|
Posted by macosham@excite.com on March 1, 2006, 3:01 pm
If you were Registered and logged in, you could reply and use other advanced thread options
I am running a VPN from my laptop to my home computer. The VPN is
encrypted and I have been using dialup internet access with Zonealarm
firewall. If I were to use the laptop on a hotel unencrypted wireless
network would there be any security problems as far as VPN data is
concerned?
Thanks,
Mike
|
|
Posted by Walter Roberson on March 1, 2006, 3:26 pm
If you were Registered and logged in, you could reply and use other advanced thread options
>I am running a VPN from my laptop to my home computer. The VPN is
>encrypted and I have been using dialup internet access with Zonealarm
>firewall. If I were to use the laptop on a hotel unencrypted wireless
>network would there be any security problems as far as VPN data is
>concerned?
Running an encrypting VPN over an unencrypted wireless network
merely converts the -possibility- of someone intercepting the
packets (by tapping wires or controlling an intermediate router
or by monitoring a microwave or satellite link) into the -certainty-
that someone *could* be intercepting the packets.
If the VPN was secure enough against the possibility that someone
was pulling the packets off of the wire, then it should be secure
enough against someone pulling the packets out of the radio waves.
Unless you are using very weak encryption, that is.
For example, if you are only using single DES (maximum 48 bit key
strength) and you have an aggressive competitor, then it would be
-feasible- for the competitor to sniff your wireless packets and
break at least one layer of your keys -- within a day if they
really went at it, or over several days or weeks with lesser resources.
On the other hand, it might -not- be feasible for the competitor
to get into your building or take control of any of the intermediate
routers or to tap your WAN connection: those things require
Break & Enter or other similar well-recognized crimes -- whereas
the law in most places is pretty weak about passively sniffing
radio packets.
But if you go to 3DES or AES, then the computation resources
required to crack the VPN become large enough that no-one
claims to have succeeded. If you are up against the resources of
the NSA or similar, they -might- have the computational resources
but would likely find it easier to just bug your laptop.
|
|
Posted by Todd H. on March 1, 2006, 3:40 pm
If you were Registered and logged in, you could reply and use other advanced thread options > I am running a VPN from my laptop to my home computer. The VPN is
> encrypted and I have been using dialup internet access with Zonealarm
> firewall. If I were to use the laptop on a hotel unencrypted wireless
> network would there be any security problems as far as VPN data is
> concerned?
Depends on the strength of the encryption, but assuming it's
reasonably strong, it shouldn't be a concern.
Your DNS requests will probably still go in the relative clear, and
your regular web traffic, etc. But as far as your communication with
your home computer, it wouldn't be anything I'd hesitate to do given a
suffiently strong VPN.
--
Todd H.
http://www.toddh.net/
|
|
Posted by Security Freak on March 1, 2006, 5:00 pm
If you were Registered and logged in, you could reply and use other advanced thread options
>I am running a VPN from my laptop to my home computer. The VPN is
>encrypted and I have been using dialup internet access with Zonealarm
>firewall. If I were to use the laptop on a hotel unencrypted wireless
>network would there be any security problems as far as VPN data is
>concerned?
>Thanks,
>Mike
Mike,
when your VPN is activated on the laptop, all of your traffic SHOULD
be encrypted, unless you are using a a Split VPN Connection. Which
means that only traffic destin for your IP in the VPN will go thru the
tunnel.
Hope this helps
|
| Similar Threads | Posted | | Security level of wireless network | March 26, 2007, 3:47 am |
| Denial of service in Wireless local area network | July 21, 2006, 10:55 pm |
| HOW DO YOU ENCRYPT AN ENTIRE CD FULL OF UNENCRYPTED FILES? | February 27, 2006, 3:24 pm |
| looking for "wireless" security job | July 6, 2005, 8:15 am |
| Wireless security | October 10, 2005, 12:51 pm |
| wireless security | December 20, 2007, 8:57 am |
| Security and wireless internet | December 8, 2006, 4:12 am |
| Hello Watch my talk on wireless security here | February 20, 2006, 1:11 pm |
| Hello Watch my talk on wireless security here | February 20, 2006, 1:14 pm |
| Looking for a new Network Security Solution | April 6, 2004, 5:46 am |
|
XML site map