this post was submitted on 06 Jul 2024
860 points (100.0% liked)

196

16450 readers
1814 users here now

Be sure to follow the rule before you head out.

Rule: You must post before you leave.

^other^ ^rules^

founded 1 year ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] tfw_no_toiletpaper@lemmy.world 63 points 4 months ago (1 children)

Please use a VPN anyway, as if hotel WiFi is secure lmao

[–] calcopiritus@lemmy.world 48 points 4 months ago (3 children)

HTTPS solved much of the security issues of untrusted networks. As long as you're not doing banking or whatever, you should be fine without a VPN.

[–] WIPocket@lemmy.world 44 points 4 months ago (2 children)

Why would banking be an issue? I get that its a target, but I really would expect a bank to take care of their TLS.

[–] Tryptaminev@lemm.ee 19 points 4 months ago

Also i would expect banks to use some sort of 2FA where you have to manually confirm any transaction on your mobile device, or enter a code generated from there into your computer.

[–] calcopiritus@lemmy.world 7 points 4 months ago

No security measure is perfect. When doing security-sensitive things, it's better to wait when you're home on an uncompromised network.

But yes, the chances of something happening is very small, even when using an unknown network.

[–] Cornelius_Wangenheim@lemmy.world 19 points 4 months ago (1 children)

It should be fine as long you don't click through any SSL errors. And something like a bank should have HSTS enabled, meaning your browser will refuse to load the site if there's an SSL error.

[–] calcopiritus@lemmy.world 4 points 4 months ago

They don't let me choose a password longer than 6 characters. I don't assume anything about my bank's security.

[–] Trainguyrom@reddthat.com 1 points 4 months ago

Personally I do a Tailscale tunnel to my home network, if nothing else but so that services don't log a hotel IP