cranial_bore — 2010-07-01T21:22:32-04:00 — #1
I have a question about the security concept that traffic sent over a non-encrypted connection can be intercepted and read by anyone. The word anyone is often used, but I'm a bit sceptical.
Can anyone really intercept plain text HTTP traffic from one unrelated source to another? Or do they need to be on the wireless network, or have some administrative control over a wired network, or have some access to an ISP server or router somewhere along the chain?
xhtmlcoder — 2010-07-02T05:50:56-04:00 — #2
It depends upon what tools you use to intercept the transmission, i.e. packet sniffers or hardware tappings, etc. The main obstacle against eavesdroppers with (hard-wired network) you'd usually have to have physical access to the nodes or medium - unless of course the machine had been compromised via malware, etc.
However, concerning Wi-Fi even if you use HTTPS with an "unencrypted" Wi-Fi connection it can be easily intercepted due to Wi-Fi having a lax ad-hoc approach. So even if the Wi-Fi was "password protected" it wouldn't really protect you one iota from eavesdroppers. It must be securely encrypted for HTTPS to actually "work correctly" via wireless.
That's what most home users forget with Wi-Fi they password protect so their neighbours can't "auto connect" but forget to enable encryption so are leaving themselves extremely vulnerable to a determined localised attack.