Free public WiFi, for example Starbucks, is convenient. I wonder if there is a way to verify that a laptop has connected to the Starbucks wireless router and not to a man in the middle that tricked my laptop using ARP spoofing.
I might use Starbucks WiFi to connect to a corporate VPN. Would it make sense to do a quick banner grab and common port scan of my default gateway to see if anything looks odd before I try to connect to the corporate VPN? Does Starbucks use a consistent RFC 1918 private network IP address for the router?
For this question assume the bad guy did his homework.
-My laptop receives an ARP spoof before I am able to connect to my VPN.
-The man in the middle has a certificate from a trusted CA.
http://ift.tt/1BhO1Nz
Aucun commentaire:
Enregistrer un commentaire