Comment by riobard
4 years ago
By now it's probably easier in mind to treat any Wi-Fi as Open Network and always use something like WireGuard/Tailscale for secure communication between devices.
4 years ago
By now it's probably easier in mind to treat any Wi-Fi as Open Network and always use something like WireGuard/Tailscale for secure communication between devices.
Can you help me understand why this is necessary if all your services use https?
Yeap. I'm trying to remember if 802.11x would help or it's just AAA. Point-to-point tunnels up one layer are the way to go.
And set your own DNS, and maybe block DNS on the standard port...
If only we knew 6 months earlier after a reasonable disclosure.
It’s always been my working assumption that WiFi security should be presumed to be broken until it is proven to be broken.