• Godort@lemm.ee
      link
      fedilink
      arrow-up
      62
      ·
      2 months ago

      It’s good practice to assume that this is true of every network you don’t control.

    • loutr@sh.itjust.works
      link
      fedilink
      arrow-up
      25
      arrow-down
      1
      ·
      2 months ago

      If it’s an open WiFi (no WPA password) packets are not encrypted anyway, so anyone on this AP can easily see everything that comes through it. A decade ago, when most websites allowed plain HTTP, there was a Firefox extension which let you hijack the Facebook or Twitter session of anyone connected to an open WiFi with a couple of clicks.

      Nowadays everything is hopefully encrypted at the application level, so while attackers can see where the data goes, they can’t actually read it.

    • JustEnoughDucks
      link
      fedilink
      arrow-up
      5
      ·
      2 months ago

      Everything you do on a public WiFi should be through a VPN anyway. Just in case you accidentally forget you are on it and log in somewhere.