咖啡店(Coffee)、机场、酒店休息室——您可以从任何为您提供热点的地方连接到互联网。(Internet)此类 Wi-Fi 热点不仅可以帮助您,还可以帮助窥探者访问您的数据。
使用公共 Wi-Fi 热点(dangers of using a public Wi-Fi hotspot)的危险很多。这里有一些关于Wi-Fi安全的提示,这样您就可以继续享受互联网(Internet)而不必担心太多。本文假设您使用的是最新的Windows操作系统并安装了良好的安全软件。然而,所讨论的方法适用于任何具有类似设施的操作系统。
WiFi 安全提示
在使用公共热点时,您应该遵循一些建议以保持保护和安全:
- 更改为公共网络
- 连接(Connect)到安全网络((Secure Network)如果可用)
- 不使用计算机时禁用 Wi-Fi 适配器(Computer)
- 使用安全页面 (HTTPS)
- 使用 VPN
- 考虑加密
- 保持防火墙处于活动状态
- 密切关注接入点
- 关闭打印机和文件共享
- 安全浏览习惯
- (Use Additional Security)如果可用,(Available)请使用附加安全性。
1]更改为公共网络
当您将当前网络设置从Home或Work更改为Public时,文件共享和打印机共享一样被禁用。这可以防止您的数据出现在可能正在搜索打开的硬盘的其他计算机上。
要将网络设置为Public,请单击系统托盘中的网络图标。然后点击打开网络和共享中心(Open Network and Sharing Center)。在出现的对话框中,检查网络下的网络(Network)是否已经公开。Public的图标是公园长椅,而Home网络的图标是 home 图标。如果是家庭(home )或工作( work),单击它并从结果对话框中选择公共网络(public network)。
2]连接(Connect)到安全网络((Secure Network)如果可用)
随着越来越多的人对使用 Wi-Fi 热点持怀疑态度,越来越多的公司(包括酒店和咖啡店)正在提供安全网络。检查可用网络列表中的安全网络。如果您在酒店,管理层可能会为您提供密码,以便您使用安全网络。
尽可能连接到安全网络。请记住,并非每个实体都会为您提供安全选项。要了解网络是否安全,请单击系统托盘中的网络图标。将鼠标光标悬停(Hover)在每个连接上以了解网络是否安全,如果是,则使用的安全类型。
请记住WPA2 比 WPA 更好。同样,WPA 优于 WEP。(Remember WPA2 is better than WPA. Similarly, WPA is better than WEP.)
应尽可能避免使用不安全的网络。当然,如果没有安全的网络,您可能想使用不安全的网络,但随后使用浏览器工作,因为它会在一定程度上减少威胁。
阅读(Read):黑客如何通过 WiFi 窃取密码。
3]不使用计算机时禁用Wi-Fi适配器(Computer)
今天的许多设备都带有一个硬件开关来打开或关闭无线适配器。由于您没有使用热点,因此将计算机连接到网络是没有意义的。人们可能会侵入计算机并窃取您的数据。建议您完成工作后,如果不是计算机,请关闭适配器。
如果您看不到Wi-Fi 适配器(Wi-Fi Adaptor),您可以按照以下步骤操作:
- 按 Windows 键 + 中断键
- 在出现的窗口中,单击设备管理器(Device Manager)
- 在出现的设备管理器(Device Manager)窗口中,单击网络(Network) 适配器(Adapters)以展开您计算机上的适配器列表
- 右键单击(Right-click)无线适配器(Wireless Adaptor)并选择禁用(Disable)。
- 单击窗口顶部的 [x] 按钮关闭设备管理器(Device Manager)窗口
4]使用安全页面(HTTPS)
使用网络邮件页面时,请尝试输入https而不是HTTP。这将确保您的登录信息已加密并且不会暴露在无线网络中。社交(Social)网络还可以选择为您提供https页面,以便您可以使用安全加密的页面,而不是未加密的普通页面。例如,使用Twitter时,请使用https://twitter.com/compose.aspx而不是http://twitter.com/compose.aspx。这样你的数据会更安全。
但是,对于网络邮件,它们仅为登录页面提供https,而不为允许您撰写电子邮件和查看电子邮件的其他页面提供 https。您可以通过在地址栏中为URL添加(URL)https前缀来查看该选项是否可用。如果您收到 404 错误,则加密页面不存在。在这种情况下,建议您在热点上使用某种加密网络。
阅读(Read):旅行时的 Wi-Fi 安全性。
5]获取VPN
VPN不是最安全的选择,但它确实可以有效保护您的数据免遭窥探。它还取决于 您使用的VPN 软件的类型。(VPN software)有可用的常规和基于云的VPN(VPNs)可帮助您连接,而不必担心在Wi-Fi热点使用您的电子邮件客户端。
最好的基于云的VPN(VPNs)之一是Hotspot VPN。当您向他们注册时,他们会在您的计算机和他们的安全服务器之间创建一条虚拟隧道。在必须使用VPN(VPNs)时,您可能唯一不喜欢的是它们的成本。随着云领域的进步,我预计VPN服务的灵活性会进一步下降,而相关成本也会下降。SpotFlux允许您在(SpotFlux)SpotFlux服务器和您的计算机之间创建一个隧道,以便数据可以安全地传输。您可以阅读SpotFlux 的完整评论。
阅读(Read):如何生成 WiFi 历史记录或 WLAN 报告(How to generate a WiFi History or WLAN Report)。
6]考虑加密
有几种开源软件可以加密您的文件以及整个硬盘。我建议使用TrueCrypt,这是一款免费软件,可以加密您的整个硬盘驱动器,这样任何人都无法在不破坏密码的情况下访问它。因此,如果您使用加密,请使用一个好的密码,创建一个好的密码,不要(NOT)忘记密码,否则解密会很麻烦。BitLocker随附于Windows 7/8/10,并为您的每个硬盘驱动器和分区提供加密。您可以设置BitLocker以自动或使用密钥解密驱动器。这是一篇解释 Windows 中的 Bitlocker的文章。
阅读(Read):什么是 FragAttacks(What are FragAttacks)?如何保护您的WiFi免受FragAttacks 攻击(FragAttacks)?
7]保持防火墙处于活动状态
安装Windows(Windows)操作系统时,您将获得免费的防火墙。默认情况下,Windows防火墙处于活动状态并保护您的数据。如果您使用的是Windows 10/8/7,此防火墙应该足以为您的数据创建一层保护。如果您使用任何其他操作系统或Vista之前的(Vista)Windows版本,您可以下载并安装ZoneAlarm或Comodo防火墙。两者都很好并且可以免费使用。我推荐ZoneAlarm如果您不太了解计算机术语,并且如果您有信心了解不同警报的含义,您可以选择Comodo防火墙。
阅读(Read):如何(How to get free WiFi anywhere)在笔记本电脑或手机上随处获得免费 WiFi。
8]密切关注接入点
接入点是您的计算机用来连接到Internet的点。在不同网络重叠的情况下,您可能会看到不同的接入点。您需要知道您是否连接到正确的网络——这样您的数据就不会在未知网络上传输。如果您使用的是Windows 10/8/7,操作系统会在找到新网络后立即提醒您 - 询问您是否要使用并命名它。如果您知道网络,您可以在使用它之前为其命名并为其设置一个类别。如果你不知道网络,你可以忽略它。这意味着如果您使用的是Windows 7(Windows 7)或更高版本的Windows,您不必担心. 如果您使用的是其他操作系统,请参阅其文档以了解有关检测接入点的信息。
9]关闭打印机和文件共享
对于Windows上的家庭组(Homegroups),打印机(Printer)和文件共享(File Sharing)默认打开。如果您在公共场所,您应该禁用打印机(Printer)和文件共享(File Sharing)。当系统提示您将Wi-Fi热点添加到无线网络列表时,您可以通过选择公共网络来执行此操作。(Public Network)如果您没有看到要求您确认是否要将新网络放入Home或Public组的对话框,您可以手动检查并禁用File and Printer Sharing。
- 在Windows 10/8/7中,打开控制面板(Open Control Panel)
- 单击网络和 Internet
- 单击网络和共享中心
- 在左侧窗格中,单击更改高级共享(Change Advanced Sharing)选项
- 如果您看到文件和打印机共享(Printer Sharing)已打开,请单击将其关闭
10]安全浏览习惯
如前所述,使用浏览器检查您的电子邮件和其他任务。浏览器通过在您的计算机和服务提供商的服务器之间提供加密连接来降低数据盗窃风险。大多数网站都带有HTTPS选项,您应该养成使用网站安全版本的习惯。
11]使用额外的安全性((Use Additional Security)如果可用)(Available)
您不应在公共场所使用银行服务和其他金融机构。如果情况紧急,请考虑您的银行提供的安全措施。有些银行会将PIN 码(PIN)发送到您需要输入的手机,然后您才能在线访问您的帐户。事先查看所有可用的安全选项,这样您以后就不会在没有安全性的情况下陷入困境。
最后,记得在不使用 Wi-Fi 时关闭它。(And finally, remember to turn off your Wi-Fi when you do not use it.)
这些是安全使用 Wi-Fi 的一些提示。现在看看如何修复公共和家庭 Wi-Fi 网络漏洞。如果您还有更多,请在评论区留下,我们可能会将其添加到文章中。
WiFi Security Tips: Precautions To Take At Public Hotspots
Coffеe shops, airports, hotеl lounge – you can connect to the Internet from any place that provides you a hotspot. More than helping you out, such Wi-Fi hotspots help snoopers in accessing your data.
The dangers of using a public Wi-Fi hotspot are many. Here are some tips for Wi-Fi security so that you can continue enjoying the Internet without having to fear much. The article assumes you are using the latest Windows operating system and a good security software installed. The methods discussed, however, apply to any operating system with similar facilities.
WiFi Security Tips
Some suggestions you should follow to stay protected and secure when using a public hotspot:
- Change to Public Network
- Connect To Secure Network If Available
- Disable Your Wi-Fi Adaptor When Not Using The Computer
- Use Secured Pages (HTTPS)
- Use VPN
- Consider Encryption
- Keep Your Firewall Active
- Keep An Eye On Access Points
- Turn OFF Printer & File Sharing
- Safe Browsing Habits
- Use Additional Security If Available.
1] Change to Public Network
When you change the current network setting from Home or Work to Public, file sharing is disabled as is the printer sharing. This prevents your data from showing up on other computers that are probably searching for an open hard disk.
To set the network to Public, click on the network icon in the system tray. Then click on the Open Network and Sharing Center. In the dialog box that appears, check under Network to see if the network is already public. The icon for Public is a park bench while for a Home network, it is a home icon. If it is home or work, click on it and from the resultant dialog box, select public network.
2] Connect To Secure Network If Available
With the increase is skepticism in using Wi-Fi hotspots, more and more companies – including hotels and coffee shops – are offering secure networks. Check for secure networks in the list of available networks. If you are in a hotel, the management might provide you with a password so that you can use a secure network.
As far as possible, connect to secure networks. Keep in mind that not every entity will give you the security option. To know if a network is secure, click on the network icon in the system tray. Hover mouse cursor over each connection to know if a network is secure and if yes, the type of security used.
Remember WPA2 is better than WPA. Similarly, WPA is better than WEP.
Unsecured networks should be avoided to the extent possible. Of course, if there is not a secure network, you may want to use the insecure one but then, work using browsers as it will reduce the threats to some extent.
Read: How hackers can steal passwords over WiFi.
3] Disable Your Wi-Fi Adaptor When Not Using The Computer
Many devices today come with a hardware switch to turn on or off the wireless adaptor. Since you are not using the hotspot, there is no sense it keeping the computer connected to the network. People may hack into the computer and steal your data. It is advised that once you are finished with your work, turn off the adaptor if not the computer.
If you can’t see the Wi-Fi Adaptor, you can follow these steps:
- Press Windows Key + Break Key
- In the window that appears, click on Device Manager
- In the Device Manager window that appears, click on Network Adapters to expand the list of adapters on your computer
- Right-click on Wireless Adaptor and select Disable.
- Click [x] button on the top of the window to close Device Manager window
4] Use Secured Pages (HTTPS)
While using webmail pages, try to enter https instead of HTTP. This will make sure that your login information is encrypted and not exposed to the wireless network. Social networks also have the option of providing you with https pages so that you can use secured-encrypted pages instead of normal ones that are not encrypted. For example, when using Twitter, use https://twitter.com/compose.aspx instead of http://twitter.com/compose.aspx. Your data would be safer this way.
In the case of webmail, however, they provide https only for the login page and not for the other pages that let you compose emails and view emails. You can see if the option is available by prefixing https to the URL in the address bar. If you get a 404 error, the encrypted page does not exist. In such cases, it is advised you use some sort of encrypted network over the hotspot.
Read: Wi-Fi security when Traveling.
5] Get a VPN
VPN is not the safest option but it does safeguard your data from prying eyes effectively. It also depends on the type of VPN software you are using. There are both regular and cloud-based VPNs available that help you connect without having to worry about using your email client at Wi-Fi hotspots.
One of the best cloud-based VPNs is Hotspot VPN. When you sign up with them, they create a virtual tunnel between your computer and their secure servers. The only thing you may not like while having to go for VPNs is their costs. With the improvements in the cloud sector, I am expecting further flexibility in VPN services with relative costs going down. SpotFlux allows you to create a tunnel between SpotFlux servers and your computer so that data can transfer securely. You can read the entire review of SpotFlux.
Read: How to generate a WiFi History or WLAN Report.
6] Consider Encryption
There are several open-source software that can encrypt your files as well as entire hard disks. I suggest TrueCrypt, a free software that encrypts your entire hard drive so that none can access it without breaking your password. So if you are using encryption, use a good one, create a good password and do NOT forget the password else it will be trouble decrypting. BitLocker comes with Windows 7/8/10 and provides encryption to each of your hard drives and partitions. You may set up BitLocker to decrypt the drives automatically or using a key. Here is an article explaining Bitlocker in Windows.
Read: What are FragAttacks? How to secure your WiFi against FragAttacks?
7] Keep Your Firewall Active
You get a free firewall when you install Windows OS. By default, the Windows firewall is active and protecting your data. If you are using Windows 10/8/7, this firewall should be sufficient to create a layer of protection for your data. If you are using any other operating system or a Windows version before Vista, you can download and install either ZoneAlarm or Comodo firewalls. Both are good and free to use. I recommend ZoneAlarm if you are not much into computer terminology and if you are confident of knowing what different alerts would mean, you can go for the Comodo firewall.
Read: How to get free WiFi anywhere on a laptop or phone.
8] Keep An Eye On Access Points
Access points are the points that your computer uses to connect to the Internet. In cases where different networks are overlapping, you may see different access points. You need to know if you are connecting to the correct one – so that your data does not travel on an unknown network. If you are using Windows 10/8/7, the operating system alerts you as soon as it finds a new network – asking you if you wish to use and name it. If you know the network, you can name it and set a category for it before using it. If you do not know the network, you can disregard it. This means that you do not have to worry if you are using Windows 7 or higher versions of Windows. In case you are using some other operating system, please refer to its documentation to know about detecting access points.
9] Turn OFF Printer & File Sharing
For Homegroups on Windows, Printer and File Sharing is turned ON by default. If you are at a public place, you should disable the Printer and File Sharing. This you can do by selecting Public Network when you are prompted to add the Wi-Fi hotspot to your list of wireless networks. If you did not get that dialog box asking you to confirm whether you wish to place the new network into Home or Public group, you could manually check and disable File and Printer Sharing.
- In Windows 10/8/7, Open Control Panel
- Click Network and Internet
- Click Network and Sharing Center
- In the left pane, click Change Advanced Sharing Options
- If you see File and Printer Sharing is ON, click to turn it OFF
10] Safe Browsing Habits
As said earlier, use browsers to check your email and other tasks. Browsers reduce the data theft risk by providing an encrypted connection between your computer and service providers’ servers. Most of the websites come with HTTPS option, and you should make it a habit to use the secure versions of websites.
11] Use Additional Security If Available
You should not access banking services and other financial institutions while at a public spot. If it is urgent, consider the security measures offered by your banks. Some banks send the PIN to your cell phones that you need to enter before you can access your accounts online. See what all security options are available beforehand so that you are not stuck without security later.
And finally, remember to turn off your Wi-Fi when you do not use it.
These were some tips for secure Wi-Fi usage. Now see how to fix Public and Home Wi-Fi Network vulnerabilities. If you have any more, please leave it in the comments section, and we may add it to the article.