cross-posted from: https://slrpnk.net/post/25779751
The intative promises to be privacy-friendly with no tracking. Stating:
Your privacy is important. The WiFi4EU app ensures a private online experience with no tracking or data collection. Simply connect and enjoy free public Wi-Fi without concerns.
Source: https://digital-strategy.ec.europa.eu/en/policies/wifi4eu-citizens
Will be interesting to see how this spans and plays out in reality. Looks promising too, did a quick scan of their builtin permissions and trackers and looks good too. (Scanning tool is called Exodus)
Forgive me for not covering 100% of this advanced topic in my 3 paragraphs on Lemmy… Nuance gets long, and most people have attention spans of a squirrel.
Already covered as
Where specifics can’t be divined… but other details might.
Addressed already with
Actually this is quite unlikely. ASNs are not as structured as you think. It takes an external database that specifically tracks DHCP’d ISP addresses. Case in point, when I moved to my new house… Google maps though I was a good 60 miles away from where I was… it was after repeated access to google maps and other service for about a month before maps started getting accurate with where I’m accessing their service from.
And that point is covered with
If you purposefully steer your car off the road… of course you’re going to crash. If you’re going to expose non-encrypted things onto the internet…
I would suspect the untrusted wifi to NOT be the leading thing you’d want to care about in this situation. But even then… I would start making reasonable assumptions such as you’re likely on a DHCP connection without static addressing… your site and resources will rotate IPs every once in a while. Makes tracking you even harder.
Encrypted SNI (ESNI) / Encrypted Client Hello (ECH) exists… Cloudflare for example supports ECH, and they transit a LOT of data.
But once again… would be outside of the scope of discussion here. Yes… an ISP can make an educated guess of where you’re likely to be going… and maybe even make a reasonable guess of what you could doing… But certainly not the details of it.
And this all ignores the fact that a random coffee shop isn’t going to do full packet inspection to get this data to begin with. It’s not worth it for them. They gain very little from collecting meta data without some bigger company backing them to do so… Which falls under
Edit: Typo that changed meaning. Fixed.
Quite obviously the problem is not that you did not write an 560 page essay, but that you were misleading by basically saying “nah, it’s fine, nothing could leak, everything is ultra secure nowadays”.
did you just ignore a whole lot of points here? DNS, SNI? smb clients? whatever else? its not like I’m using HTTP. things are largely encrypted, the rest is out of reach!
how many sites exactly support that configuration? do you need additional configuration for that in e.g. nginx? if so, most selfhosters probably don’t have it, because it’s talked about almost nowhere.
and is it finally enabled by default in firefox? will firefox just retry without encryption when the connection fails?
it is certainly in scope. the discussion is not about security and your accounts getting hacked by evil EU, but privacy and data mining, for which all of these is a treasure trove.
probably not the coffee shop but the networking equipment, where even cheaper models include some form of “smart cloud security”
The fact that I addressed some of these items literally line by line and you bring it up again as if I didn’t address it tells me that you’re arguing in bad faith. Have a good day. Find someone else to complain to.