Security while using WiFi while cruising - Page 3 - SailNet Community
 9Likes
Reply
 
LinkBack Thread Tools
post #21 of 42 Old 02-17-2012
Senior Member
 
Join Date: Feb 2005
Posts: 1,077
Thanks: 1
Thanked 1 Time in 1 Post
Rep Power: 11
 
pbzeer.that sounds like a good idea to me,if i buy something online what is to stop some employee or clerk from using my c.card number or even sell it to someone else,like you i don't think my pc was hacked and because i seldom use my c.card [bank-of-america loves me no doubt]during the previous 2 months i had only 2 charges on my card.i'm seriously thinking of canceling my card,i really didn't even know about the prepaid cards
sawingknots is offline  
Quote Quick Reply Share with Facebook
Sponsored Links
Advertisement
 
post #22 of 42 Old 02-17-2012
Senior Member
 
Join Date: Feb 2010
Location: Narragansett Bay
Posts: 11,244
Thanks: 46
Thanked 241 Times in 225 Posts
Rep Power: 7
   
Google the Zeus virus. You are all missing the point. This is a business for these criminals.


To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

Jeanneau 54DS

In the harsh marine environment, something is always in need of repair. Margaritas fix everything.
Minnewaska is offline  
Quote Quick Reply Share with Facebook
post #23 of 42 Old 02-17-2012
Sailors do like Heineken!
 
chrisncate's Avatar
 
Join Date: Jan 2010
Location: Maryland
Posts: 4,574
Thanks: 18
Thanked 34 Times in 34 Posts
Rep Power: 6
 
Been wondering about this..
chrisncate is offline  
Quote Quick Reply Share with Facebook
post #24 of 42 Old 02-17-2012
Owl
 
-OvO-'s Avatar
 
Join Date: Dec 2011
Posts: 219
Thanks: 0
Thanked 2 Times in 2 Posts
Rep Power: 4
 
Citibank has a service called "virtual card numbers" which lets you create a specific credit card number that can be limited to a single vendor, a certain credit limit, or a shortish expiration interval. I use it regularly, since I am more concerned about breaches and data theft from a vendor's systems than about my SSL connections being cracked.

Also, don't use the same password everywhere. I have one password I use at websites where I don't really care if somebody impersonates me, and they don't have any stored personal data. Any place else has a unique password for that site only.
-OvO- is offline  
Quote Quick Reply Share with Facebook
post #25 of 42 Old 02-17-2012
Senior Member
 
Join Date: Jan 2009
Location: Deer Harbor, Washington
Posts: 215
Thanks: 0
Thanked 9 Times in 9 Posts
Rep Power: 7
 
Most or all credit cards protect the customer 100% against fraudulent charges but it still can be a hastle. the problems will occure when using a debit card. The City card thing sounds pretty good. If your to paranoid to shop online you are missing out on a great convieneince for sure.

Mitch
mitchbrown is offline  
Quote Quick Reply Share with Facebook
post #26 of 42 Old 02-17-2012 Thread Starter
was "wee happy"
 
way-happy's Avatar
 
Join Date: Oct 2011
Location: St. Augustine, FL
Posts: 29
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 0
 
Quote:
Originally Posted by svzephyr44 View Post
WiFi sniffing is one of the least productive methods for hackers to compromise your account. First, they have to be almost in the same room (WiFi doesn't travel that far,) have some software that would seem curious in an internet cafe, and be able to spend quite a bit of time hanging out waiting for the person logging into their bank account or business account.
While you say it may be one of the least productive methods, it is still very easy to do from any car parked right outside of a cafe or boat just outside of a marina lounge.

Quote:
Far more productive is to sit on the wired side of the connection (i.e. the connection from the cafe to the rest of the internet.) Using the same tools that are used to debug Ethernet connections they can read 100% of the traffic.
Yes, this is a reason why I am particularly worried for cruisers who pick up wifi somewhere on the icw or in some anchorage and just go ahead and use it to log into their email. You have no idea who is hosting that wifi signal and they may be data logging. Just lose your email account first, then then it can be a slippery slope to your other personal information. I use a VPN all the time now. It's a hassle, but *much less* of a hassle than losing my identity!

So far I've seen these specific recommendations presented for increasing your security while online while cruising:
Use HTTPS as often as possible
Use a cellphone based internet connection rather than wifi
Use a VPN

Using virtual card numbers and credit cards rather than debit cards are very good ideas. thanks.

Let me just say that keyloggers scare me, and I never use anyone else's computers to check my accounts any more! A key logger can be as simple as a small usb thumb/flash drive plugged into the back of someone's computer like at the library or that open terminal at the marina!

Living, Loving, & Cruising on a 1968 Islander 37' sloop:
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

Last edited by way-happy; 02-17-2012 at 03:48 PM.
way-happy is offline  
Quote Quick Reply Share with Facebook
post #27 of 42 Old 02-17-2012
Senior Member
 
Join Date: Feb 2010
Location: Narragansett Bay
Posts: 11,244
Thanks: 46
Thanked 241 Times in 225 Posts
Rep Power: 7
   
A secure connection makes absolutely no difference, if you log on to an internet site that pushes a keystroke logger back to you. So it came back over a secure connection? So what? You're still infected. They still get your password and go hunting on the site you typed it into for your personal data.


To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

Jeanneau 54DS

In the harsh marine environment, something is always in need of repair. Margaritas fix everything.
Minnewaska is offline  
Quote Quick Reply Share with Facebook
post #28 of 42 Old 02-17-2012
Senior Member
 
Join Date: Feb 2008
Location: N. VA
Posts: 656
Thanks: 0
Thanked 1 Time in 1 Post
Rep Power: 8
 
Send a message via Yahoo to dacap06
Quote:
Originally Posted by Minnewaska View Post
A secure connection makes absolutely no difference, if you log on to an internet site that pushes a keystroke logger back to you. So it came back over a secure connection? So what? You're still infected. They still get your password and go hunting on the site you typed it into for your personal data.
Visiting an infected site is a different problem, but one that is just as real. Beware of social engineering, which will attempt to convince you to install malware. If you are a Windows user, install antivirus and anti-malware packages, and set your firewall to deny any incoming connection requests. Even better, install an upgraded firewall that denies permission both inbound and outbound until you grant it. Checkpoint software's Zonealarm works like that. Keep up with all the updates.

I used to tell my kids when they were teens "To stay out of trouble, don't go where trouble is." The same is true for computing. Visit only trusted sites. If you have the moxie to learn a different operating system, don't use Windows. Windows is where most of the trouble is. More than 90% of malware targets Windows and its applications. Use LInux, OS X, BSD Unix, OpenSolaris. But keep up with the updates in these also. One caveat to even in this operating systems is to beware of applications that use windows-like scripting -- browsers and OpenOffice/LibreOffice come to mind immediately.

T. P. Donnelly
S/V Tranquility Base
1984 Islander 30 Bahama
Pasadena, MD
dacap06 is offline  
Quote Quick Reply Share with Facebook
post #29 of 42 Old 02-17-2012
Senior Member
 
Join Date: Feb 2010
Location: Narragansett Bay
Posts: 11,244
Thanks: 46
Thanked 241 Times in 225 Posts
Rep Power: 7
   
You only need to load a picture, or link to a seemingly innocent site, or click anything that is designed to look exactly like the innocent thing you think you are clicking to get a virus now. The days of opening a suspicious attachment to an email are long past. Facebook is reportedly one of the best delivery channels for the Zeus virus.


To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

Jeanneau 54DS

In the harsh marine environment, something is always in need of repair. Margaritas fix everything.
Minnewaska is offline  
Quote Quick Reply Share with Facebook
post #30 of 42 Old 02-17-2012
Senior Member
 
JordanH's Avatar
 
Join Date: Dec 2008
Location: Canada
Posts: 324
Thanks: 0
Thanked 0 Times in 0 Posts
Rep Power: 7
 
There is good advice on this thread, and some misinformation as well.

I work in the field and have to advise on this stuff often.
The most common, and simplest, form of gathering information is key loggers on public computers; Web cafe's, libraries, hotel lobbies etc. are easy targets. Enter only information into them that you would willingly share with a stranger on a bus.

A second, common, form of stealing credit card numbers is logging into pay wifi sites. You can find these false logins in public places; hotels, airports and so-on. You login thinking you are connecting to a hotspot by entering your credit card number and security code. There goes your credit card information.

Key loggers, viruses, wifi and ethernet sniffing are highly unlikely if you use your own equipment and an SSL connection. The latter methods are not needed on public terminals. Point being, avoid public terminals as they are often logged.

One further word of warning about public terminals. Only open attachments that contain information you would share with a stranger on a bus. When you open an attachment, it is downloaded (unprotected) to the terminal and may be accessible to others. For example, you download and view your e-mail over a secure connection and view a Word Document of a confidential work project. This file is saved in a 'temporary' location and may not be cleaned up when you log out. You *think* you were secure, but you have just shared that information with a nefarious ne're do well.

As for viruses... well... If you can't trust your operating system, nor your firewall, nor your antivirus software, perhaps you shouldn't be paying them for software that is poorly designed and insecure?
shanedennis likes this.

Last edited by JordanH; 02-17-2012 at 09:30 PM.
JordanH is offline  
Quote Quick Reply Share with Facebook
Reply

Quick Reply
Message:
Options

By choosing to post the reply above you agree to the rules you agreed to when joining Sailnet.
Click Here to view those rules.

Register Now



In order to be able to post messages on the SailNet Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
Please note: After entering 3 characters a list of Usernames already in use will appear and the list will disappear once a valid Username is entered.


User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.

Password:


Confirm Password:
Email Address
Please enter a valid email address for yourself.

Email Address:
OR

Log-in









Human Verification

In order to verify that you are a human and not a spam bot, please enter the answer into the following box below based on the instructions contained in the graphic.




Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page



Similar Threads
Thread Thread Starter Forum Replies Last Post
Security While Cruising In Dangerous Places shamrock6 Cruising & Liveaboard Forum 89 03-24-2010 10:26 PM
WiFi for the Cruising Sailor sailingdog Electronics 12 07-30-2009 10:21 AM
Wifi jrd22 Gear & Maintenance 42 06-17-2009 12:51 PM
WiFi firstafair General Discussion (sailing related) 4 11-17-2007 02:34 PM
Wifi mallo Gear & Maintenance 3 03-21-2007 10:09 AM

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Trackbacks are On
Pingbacks are On
Refbacks are On

 
For the best viewing experience please update your browser to Google Chrome