Is it Safe to use Free WiFi?
internet computers

Free WiFi or hotspots are public places where Internet connectivity is available to anyone within broadcasting range. Cafes, libraries, school campuses and civic centers are just a few places where you might find free WiFi. Generally it’s safe to use hotspots with a few common sense rules.

Free WiFi networks are often unencrypted, as encryption would require logon credentials for each person joining the network, hampering accessibility. Networks that don’t require credentials are easy for anyone to jump onto with little or no user direction.

A wireless router broadcasts all dialogs taking place between itself and connected computers. If ten patrons of a café are using their computers to cruise the Internet, check email or download music, ten conversations are being broadcast throughout the café and immediate area. Others within range can use widely available tools to eavesdrop on those dialogs, trapping and analyzing data packets. This is a good way for nearby malicious persons to gain usernames, passwords, email messages, and other personal information that is traveling unencrypted on the wireless network.

As a precaution you might avoid visiting websites that send usernames, passwords or email in the clear when using free WiFi. That said, when accessing such websites from home, the data is still traveling across the Internet in plain text, subject to online snoops. By avoiding visiting the sites on free WiFi you are only eliminating the additional risk of local users who might be snooping wireless traffic.

Even if a free WiFi network is encrypted, there are different types of encryption. An old protocol known as Wired Equivalent Privacy (WEP) can be easily broken with readily available software. Only the stronger WiFi Protected Access (WPA) will prevent local snoops from being able to decipher the dialog between your computer and the wireless router. In all cases the router will decipher traffic before sending it on to the Internet, so online snoops will still be able to read unencrypted data exchanged between yourself and the Internet. WPA will only stop local snoops from reading wireless traffic.

It is safe, however, to use free WiFi for accessing sites that provide end-to-end (also called point-to-point) encryption. End-to-end encryption is automatically put in place when visiting a site with an address that starts with https. In this case your browser will encrypt all communication before it leaves your computer, and it will only be decrypted at the destination site. The website likewise encrypts everything from its end, which gets decrypted by your browser. An interloper, whether local or online can still trap passing data packets, but the contents of those packets will be unreadable.

Online banking employs point-to-point encryption, as do shopping carts and all legitimate websites that require personal information to provide a service or product. Ideally any website that requires a username and password should provide a secure connection to exchange those credentials, but many sites that require registration allow the username and password to travel in the clear. Unfortunately, this is also true of some Webmail services. In this case your email is also traveling in the clear for snoops to trap and read.

While free WiFi is safe for secure websites, highly sensitive activities should only be performed from your own computer. A public computer should not be trusted for anything but casual surfing. Computers store passwords, usernames and other revealing data in a type of memory called cache making it possible to retrieve later by others. A public computer could also be infected with keylogger software that records keystrokes, defeating the purpose of point-to-point encryption by trapping account numbers, usernames and passwords as they are typed into the keyboard.

To keep your computer safe, employ reputable anti-virus and anti-spyware software that is updated frequently. Additionally, scan for rootkits regularly. These are scripts that can be used remotely to control your computer online without your knowledge. Rootkits use resources that can slow performance, interfere with the proper functioning of your computer, and can also be used to install keyloggers and other malicious software. To find a good rootkit scanner, check reputable sources like PC Magazine, PC World, or well-established geek forums.

Related wiseGEEK articles
What Is a Computer Cleaner?
What are Wifi Hotspots?
What is a Keylogger?
What is a Username?
Is Using Someone Else's Wireless Internet Service Secure?
What is Access Point Mapping?
What are the Origins of Wireless Hotspots?

Category
Internet and Computers

wiseGEEK features
Email this Article
Print this Article
Link to this Article
Comment on this Article
Add Page to Favorites
Suggest a Topic

Subscribe to wiseGEEK
RSS Feed
Twitter

Discuss this Article
3
I have issues with WEP and interactivity with my nintendo systems, both my wii and ds's.I can't figure out how to get this to go away so I can use it. We use a lynksys wireless-g router, with vista, also using internet explorer 7.0,and firefox. I hope you can help me disable this. Thanks for reading.
- anon41302
2
You cannot secure the WiFi connection of a public hotspot. Either they offer a secure connection, or they don't. A secure connection requires you enter credentials like a username and/or password. Most public hotspots are not secured. This only means that *if* a hacker were nearby you (within range of the network) s/he could theoretically trap information traveling between your computer and the router you are connecting to... meaning the one in the hotel, or cafe, or wherever you happen to be. Are the chances of that high? Probably not. But it's possible.

An unsecured WiFi connection does *not* mean someone can hop on to your computer. You are actually more in danger of that coming from the Internet itself, than from an unencrypted (unsecured) WiFi connection. And there is no way to avoid being exposed to that ever-present danger as long as you get online, except through having a firewall and anti-virus, anti-spyware software running, which minimize the risk.

Surfing on an unsecured WiFi is no problem. If you are worried about people seeing your email, you'll need to encrypt it, but that means the people you email *with* also need to use encryption. A good idea, but not everyone is willing to do it.

Otherwise, don't worry. Millions of people use unsecured hotspots every day.

- anon28069
1
I just bought a Toshiba laptop that has WiFi built in for use when I travel. All I want to do is check my emails and maybe search the internet for directions for my Tom Tom. Whenever, I open the WiFi network, I can get only unsecured connections.

I plan to use it in motels that I stay at...I thought that they would offer secure connections, but a friend tells me that I can get the key to connect, but even when she does that...it comes up an unsecured connection.

How can I get a secure connection? Is there a secure way to connect to WiFi hotspots? My laptop came with Norton 360 good for 60 days. I saw where AVG offers an Internet Security software program...will that keep me secure in hot spots even if I can only connect to an unsecured network?

I don't have a cell phone per say...I use TracPhone and pay as I go. At home I have Verizon DSL for my computer. I have Verizon forward my emails to Outlook Express as I like using it.

I'm only able to connect to unsecured WiFi. All I want to be able to do is read my mail and surf a little, but without getting hacked into!!!

Can you help me? Thank you so very much...I'll be awaiting your reply. Dannie

Configuration: Windows Vista

Internet Explorer 7.0

- dannie

FREE: Subscribe to wiseGEEK
 
    learn more

our strict privacy policy ensures that your email address will be safe


Written by R. Kayne
Last Modified: 14 August 2009

copyright © 2003 - 2009
conjecture corporation


home FAQ contact about testimonials terms privacy policy rss