Public WiFi isn't that bad, right?

By Olly Ewert

Elevator Pitch

[ARCHIVED] What can someone do to me if I connect to the WiFi at a coffee shop or airport? and what can I do to protect myself? A tour of the WiFi stack from top to toe, looking at current common vulnerabilities and how to protect against them.

Description

What I found while refreshing my knowledge on WiFi security, to protect myself while travelling abroad. However this applies just as easily at your local coffee shop. This talk will walk through the WiFi stack looking at common vulns and misconfigurations that apply today, as well as some that have been and gone. I will present information I gathered about public WiFi while travelling. Deliberately out of scope is Bluetooth, cellular and physical attacks.

Notes

It will focus mostly on HTTP related attacks, I might see about adding some SMTP or other common protocols. Issues covered will include project zero Broadcom vuln, DNS misdirection at various levels, open ports, host separation (or lack of), packet injection, SSL Strip.

Recommendations for various levels from settings to turn on and to browser plugins that can help to VPNs etc.