Has anyone empirically analyzed the actual threat from using public WiFi? That is: (1) how much useful (unencrypted) data is still available to a rogue AP, (2) how well these attacks could be executed by remote attackers?
-
-
But while it's easy to test an app (given you have a compatible USB WiFi adapter), knowing which apps to trust requires that you have tested each app on your phone. Having just gone through the top 10 free Android apps, only one of them results in using unvalidated HTTPS by now.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
That's pretty cool. Would still be great to see something like http://badssl.com but for client side TLS, someday that tool will exist.... CC:
@TomRittervg -
https://www.ssllabs.com/ssltest/viewMyClient.html … ? Given the differences between client initiated action and server response I don't expect we'll ever see some silver bullet. Hell BJ built one of these along with half a dozen other folks.
End of conversation
New conversation -
-
-
Thanks for sharing this
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
