2008/6/17 Robin Wood <dninja (at) gmail (dot) com [email concealed]>:
> Hi
> Does anyone else feel confident enough about their home network
> security to run an unprotected wireless network like Bruce Schneier ?
>

For those of you that don't use WEP/WPA, do you do any kind of
encryption or do you just work on the probability that you won't get
hacked?

I do a lot of web development and there are still hosting companies
who will only give ftp access. I don't like accessing these through my
wired network, let alone over an unencrypted wireless network. Could a
very technically savey client do me for negligence if their site got
owned through disclosure of the ftp login details if they found I
wasn't doing all I could to secure myself? Similarly, if a web session
got hijacked while logged into a clients intranet would I be
considered negligent (I don't build them but there are some that are
completely on http not https).

I wouldn't do this kind of access in a coffee shop but at home I want
to be able to use my laptop without thinking about what I'm accessing
and whether I need to ssh to a box on my wired network before doing
that quick ftp transfer.

You could setup a VPN but that is replacing one style of encryption
with another and one of the arguments is that all encryption is
breakable.

Robin

[ reply ]