Re: hotel captive portals and forced VPNs

[Frank Michael <frankcmichael () gmail com>]

I would think if you are using a Mac, something like Little Snitch could prohibit any outbound connectivity until a VPN 
session is set up if it is configured that way. This works for me for any program I have not explicitly permitted.
 

On Dec 27, 2012, at 9:41 AM, Robin Wood <robin () digininja org> wrote:

> Hi
> I was talking to a friend who was saying that his laptop is set up so
> all his traffic is sent over a VPN back to his company network and
> that he uses it from round the country on hotel networks. Most hotel
> networks I've used have a captive portal where you at least have to
> tick a box to say you agree to the Ts&Cs. If he is doing that then I
> surely there is a short period before the VPN is brought up where the
> device is on the hotel network and then the internet.
>
> This short period would give enough time for any apps which call home
> to have made their connections and potentially have been owned by Evil
> Grade and anything else running which is trying to get out to make a
> connection.
>
> Has anyone seen a way to stop this short window of opportunity but
> obviously still allow the user to connect to the captive portal and
> authenticate?
>
> Robin
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom () mail pauldotcom com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com
_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com