smart computer guys, question

Topics without replies are pruned every 365 days. Not moderated.

Moderator: Dux

Post Reply
User avatar
seeahill
Font of All Wisdom, God Damn it
Posts: 7838
Joined: Sun Jan 02, 2005 6:07 pm
Location: The Deep Blue Sea

smart computer guys, question

Post by seeahill » Tue Jan 07, 2020 12:21 am

I'll be doing a lot of traveling out of country in the next year. Do I need a VPN? My central concern is that I have my bank and brokerage on the phone. Will a good VPN provide a level of safety?

If so, what's a good one. I'm looking at NordVPN and ExpressVPN.
Image

User avatar
Grandpa's Spells
Lifetime IGer
Posts: 11212
Joined: Thu Jan 06, 2005 10:08 pm

Re: smart computer guys, question

Post by Grandpa's Spells » Tue Jan 07, 2020 1:47 am

A VPN is a good idea if you will be banking over shared/public internet. I would go with Tunnelbear, as NordVPN had a recent breach.

https://thewirecutter.com/reviews/best-vpn-service/
One of the downsides of the Internet is that it allows like-minded people to form communities, and sometimes those communities are stupid.

User avatar
seeahill
Font of All Wisdom, God Damn it
Posts: 7838
Joined: Sun Jan 02, 2005 6:07 pm
Location: The Deep Blue Sea

Re: smart computer guys, question

Post by seeahill » Tue Jan 07, 2020 3:43 am

Spells, Thnx. Looks like exactly what I need.
Image

User avatar
SubClaw
Top
Posts: 1914
Joined: Sun Dec 25, 2011 5:01 pm

Re: smart computer guys, question

Post by SubClaw » Tue Jan 07, 2020 9:42 am

I don't really see the need for a VPN. All banks have end-to-end encryption sites.

The only use I see for a VPN is accessing location-based services (your Netflix account, for instance) or bypassing your ISP restrictions (banned torrent sites).
Image

Ripe Turd
Staff Sergeant
Posts: 463
Joined: Wed Dec 19, 2007 11:34 pm

Re: smart computer guys, question

Post by Ripe Turd » Tue Jan 07, 2020 2:33 pm

seeahill wrote:
Tue Jan 07, 2020 12:21 am
I'll be doing a lot of traveling out of country in the next year. Do I need a VPN? My central concern is that I have my bank and brokerage on the phone. Will a good VPN provide a level of safety?

If so, what's a good one. I'm looking at NordVPN and ExpressVPN.
If you want to be REALLLLY safe, make sure you don't connect automatically to wi-fi without the VPN. Probably in your phone wi-fi settings.
SubClaw wrote:
Tue Jan 07, 2020 9:42 am
I don't really see the need for a VPN. All banks have end-to-end encryption sites.

The only use I see for a VPN is accessing location-based services (your Netflix account, for instance) or bypassing your ISP restrictions (banned torrent sites).
VPN is to protect you from someone intercepting the data between your phone and the wi-fi network (or something like that). How good is end-to-end encryption if someone has intercepted your password when your were logging in?
Hanglow Joe wrote: Why do you need a program? Showing up a 1/2 hour a day and doing what you're doing is great. Try it for 4-6 weeks, you're not going to get dick cancer by not following a program.

User avatar
SubClaw
Top
Posts: 1914
Joined: Sun Dec 25, 2011 5:01 pm

Re: smart computer guys, question

Post by SubClaw » Tue Jan 07, 2020 3:26 pm

Ripe Turd wrote:
Tue Jan 07, 2020 2:33 pm
VPN is to protect you from someone intercepting the data between your phone and the wi-fi network (or something like that). How good is end-to-end encryption if someone has intercepted your password when your were logging in?
HTTPS is secure over public hotspots. Only a public key and encrypted messages are transmitted (and these too are signed by root certificates) during the setup of TLS, the security layer used by HTTPS. The client uses the public key to encrypt a master secret, which the server then decrypts with its private key. All data is encrypted with a function that uses the master secret and pseudo-random numbers generated by each side.

Thus:

+ the data is secure because it is signed by the master secret and pseudo-random numbers
+ the master secret and pseudo-random numbers are secure because it uses public-private key encryption when the TLS handshake occurs
+the public-private key encryption is secure because:
- the private keys are kept secret
- public-private key encryption is designed to be useless without the private key
- the public keys are known to be legitimate because they are signed by root certificates, which either came with your computer or were specifically authorized by you (pay attention to browser warnings!)

Thus, your HTTPS connections and data are safe as long as:
+ you trust the certificates that come with your computer,
+ you take care to only authorize certificates that you trust.

Using a VPN only adds a new layer of potential snooping (you have to trust them not to spy your traffic).
Image

Ripe Turd
Staff Sergeant
Posts: 463
Joined: Wed Dec 19, 2007 11:34 pm

Re: smart computer guys, question

Post by Ripe Turd » Tue Jan 28, 2020 8:17 pm

SubClaw wrote:
Tue Jan 07, 2020 3:26 pm
Ripe Turd wrote:
Tue Jan 07, 2020 2:33 pm
VPN is to protect you from someone intercepting the data between your phone and the wi-fi network (or something like that). How good is end-to-end encryption if someone has intercepted your password when your were logging in?
HTTPS is secure over public hotspots. Only a public key and encrypted messages are transmitted (and these too are signed by root certificates) during the setup of TLS, the security layer used by HTTPS. The client uses the public key to encrypt a master secret, which the server then decrypts with its private key. All data is encrypted with a function that uses the master secret and pseudo-random numbers generated by each side.

Thus:

+ the data is secure because it is signed by the master secret and pseudo-random numbers
+ the master secret and pseudo-random numbers are secure because it uses public-private key encryption when the TLS handshake occurs
+the public-private key encryption is secure because:
- the private keys are kept secret
- public-private key encryption is designed to be useless without the private key
- the public keys are known to be legitimate because they are signed by root certificates, which either came with your computer or were specifically authorized by you (pay attention to browser warnings!)

Thus, your HTTPS connections and data are safe as long as:
+ you trust the certificates that come with your computer,
+ you take care to only authorize certificates that you trust.

Using a VPN only adds a new layer of potential snooping (you have to trust them not to spy your traffic).
Thanks! So, if I log in to websites I already know, even while travelling, I don't need a VPN at all? I thought it was a necessary expense.. ](*,)
Hanglow Joe wrote: Why do you need a program? Showing up a 1/2 hour a day and doing what you're doing is great. Try it for 4-6 weeks, you're not going to get dick cancer by not following a program.

User avatar
SubClaw
Top
Posts: 1914
Joined: Sun Dec 25, 2011 5:01 pm

Re: smart computer guys, question

Post by SubClaw » Tue Jan 28, 2020 9:35 pm

The only real advantage of using a VPN is that all your traffic will be obscured, so the WiFi provider won't possibly know how many times you Googled "transgender amputee midget porn".

But if all you care about is keeping your bank transactions secure, as long as you can see a padlock icon displayed on your browser, it will be fine. For instance, iGx is NOT a secure site, so anyone could potentially be able to snoop around and steal your credentials.

But you can always post on the StrongFirst forum (which is a secure site) in the meantime. :finga:
Image

Post Reply