Using Unsecured Wireless Network Connections???

are there any precautions i should take when using these networks?

i know about the firewall- i am using ZoneAlarm, and the one big difference i notice is that there are hardly any alert log notices that are blocked, compared to the hundreds blocked when i use a dsl modem.
so in terms of a firewall, is mine set up properly?

and i know you probably shouldnt do personal information issues like banking on unsecured, but is email generally safe? and how can i make sure that the host of the unsecured cannot access my connection?

thanks

 

If it isn't an encrypted network, every piece of data you send is potentially vulnerable.

Yes, a firewall is always a good idea...if anything it protects against hackers in that network. The DSL modem is probably pinging your computer, which is the reason for all those messages. Shoot, ZA flags my computer when accessing itself!

Also, make sure that you use a public network (one that is advertised as free and available). Hoping around people's homes looking for a network is (1) illegal and (2) potentially troublesome for you when the police show up on a suspicious activity call.

 

email are sent in the open. Unless you are using an encryption program.

 

Actually banking and online transactions are fine on an unprotected access point. They use secure connections between you and the site. The only things to worry about are email, if you are not logging in securely, someone sniffing your surfing to non-secure sites, like this one, or someone getting into your computer. These are easy to solve, login securely to your email (for instance, when going to gmail, use http s://www.gmail.com) and run a software firewall and turn off file-sharing. You could also use a VPN.

But, as I said, if you are using a secure site (little lock in the address bar) then the access points security is irrelevant.

 

Actually, if the login form points you to an https encrypted page, then even logging into the http page will encrypt the data.

A man-in-the-middle attack is very hard to carry out, as it requires intercepting the packets without changing them due to the way that SSL exchanges keys and such. If you click "ok" on SSL warnings from your browser, don't. Otherwise, SSL is nearly as secure as a VPN (and usually faster). The main thing you DON'T want to do is connect to a site from a public access point that you haven't connected to and verified with that computer from a private network connection, and understand how the system works. I use self-signed certs for my personal email and web server, and it works fine. I will know if anyone is trying a MITM attack because the signatures will change from what I have already verified from inside my personal network as correct. If that ever happens, I will just not connect, and go break the nearby hacker's legs

 

how would i know if its encryted and how would i defend myself