I kinda don’t trust my home network because my brother is douche and I feel like he’s gonna do some weird things with the connection, so I prefer to juse use my phone’s data (unlimited data plan) to avoid any shenanigans. Hypothetically, how much harm can an evil wifi do?

Does using HTTPS avoid all risks? What about evey program on your computer or every app on your phone, do they also have HTTPS everywhere on? (I use Android btw)

How much could a VPN do better that HTTPS cant?

  • doodledup@lemmy.world
    4·
    16 hours ago

    Https only encrypts the packet content.

    What can happen:

    TL;DR: Evesdropping, spoofing, device vulnerabilities (e.g. using exposed ports).

    • Attackers can listen and log to which servers you’re talking to. This can be combined with the attack explained in the following.
    • The can do spoofing attacks by replying to your DNS request with their own IP. For example: you open domain.com and the attacker will not forward domain.com to the trusted DNS server but will instead send you their own IP and website that looks exactly like the website you intent to visit. Since they control this spoofed website they can also intercept all the credentials you enter. If you don’t enter credentials or upload or download stuff, nothing can happen. However you’ll be safe from spoofing attacks in most cases as popular websites use HSTS which hardcodes the IP addresses corresponding to domains result into your browser, bypassing DNS.
    • An attacker could exploit device vulnerabilities that are unrelated to https web traffic. So make sure your OS and software are up to date and you don’t have applications running with exposed ports!

    A VPN will prevent the first two attacks.