Does anyone use a VPN while in Jamaica? Any issues with connectivity or internet speed? Would I have to purchase it in Jamaica or can I buy it in the US before we reach? Appreciate.
Printable View
Does anyone use a VPN while in Jamaica? Any issues with connectivity or internet speed? Would I have to purchase it in Jamaica or can I buy it in the US before we reach? Appreciate.
A VPN typically goes thru/over whatever internet connection you are using, thus providing an extra layer of security. That being said, I would recommend you find a reputable VPN provider ahead of time and then use it over whatever connection you have in Jamaica (typically WiFi). Symantec has a nice mobile vpn solution if you intend to use a cellphone to access bank accounts or something of that sort.
~Moose
Here are some good free vpns, as Moose says it is more of a software solution not a service you buy from a provider.
https://www.bestvpn.com/blog/18736/5-best-free-vpn-2/
Be sure to read the other articles linked as the provide good warnings about VPN.
If you are connecting to a machine at work, they should have some software that they recommend.
I personally use Privateinternetaccess.com. Very good vpn service for a yearly fee and has many access points across the globe. As someone has already mentioned.... it all depends on your internet connection and wifi at the best of times in Jam is pretty lacking. I carry an external usb adapter and antenna to boost the signal a bit. If you are planning on streaming netflix or something like that you could have challenges with signal. If this is merely to encrypt your data while on a bank site or something like that and its a secure site you already have SSL encryption and likely wont need much more than that.
Thanks for the info CM, Rob, and craigandjen. I am only looking into it due to the open wifi where we are staying and perhaps having to access financial sites when down there for our 5 weeks. I can set us up so I shouldn't have to; but, as my mother used to always say, "You never know". So, I have been researching VPNs. Thanks again.
So if all you are doing is banking sites you really dont need a vpn. As long as your bank or financial institute adheres to Secure Socket Layer encryption you are good to go. Any data you send through a secure bank website is encrypted . People sniffing out your wifi data in reality takes more skill and tecnno chops than they make you believe on TV. The most likely scenario of someone stealing data would be stealing your actual laptop. In that vein dont store any bank info or passwords. Especially on websites where you can save your log in data. Even with a VPN. I have seen people who believe they have taken all measure and got a VPN but they saved the password to log into the VPN on the computer (that check box that says save log in details).Quote:
Originally Posted by Weathermon & Mi Lady
craigandjen,
GREAT advice!!! Checking your financial services here should be fine as they all probably use the SSL encryption which is shown in your address bar as an https:// address (not just http://). Your banking here should be no problem! And never have the software or site "remember" important passwords like your financial passwords on any device or on a piece of paper with that device. That is great advice at home as well as on travel. People often dont think about home break-ins and that ramification...
VPNs are usually used here to bypass the copyright restrictions that are placed on Jamaica by sites like Hulu.com and major broadcasting networks (we couldnt watch Tessanne on The Voice live on NBC - it was blocked) or when connecting to your company network so it is as if you are sitting at your computer in the office (which sucks on vacation)... (grin)
I use my cell data on Zion Hill. Good 3G @ about 8Mbs.
I have remote software (used to be called telnet) that allows me to access a computer in the states and take control. Even if my keystrokes were being hijacked all it would record is clicks and cut and paste inside the remote system.
I imagine "Go To MY PC" over the net would work the same way.
Of course a locked door never stopped a dedicated thief but......
I sit up on Zion Hill and take phone calls forwarded from my business phone to my Digicel phone, send and recieve email, post on Negril.com etc. And most have no idea that I'm not in my office in St. Augustine..........
But I do tell some of them LOL
Cap
GoToMyPC works great for me, but that's to access a host workstation.
Don't know if this helps but using Internet Explorer you can click on 'InPrivate Browsing': InPrivate Browsing helps prevent Internet Explorer from storing data about your browsing session. This includes cookies, temporary Internet files, history, and other data. Toolbars and extensions are disabled by default. See Help for more information. To turn off InPrivate Browsing, close this browser window.
That's the point. You need a secure host workstation at home with all the real stuff.Quote:
Originally Posted by Lola
Cap
HLola, InPrivate browsing or Chrome's incognito only hides your activities on your device, it does nothing to hide it from the ISP or any sites you visit. If someone is snooping your non-DSL website traffic they'll be able to see everything. It is main for use on public access PCs where you do not want any trace of your usage to remain.Quote:
Originally Posted by Lola
~Moose
Thanks for all the information. I have a Mac Book, so Windows and PC stuff will not work. I never store passwords or save passwords. I'm pretty safe when it comes to that kind of thing. I write my passwords in a ledger and keep it next to my computer for reference. :) Mi Lady and I are going through some big changes right now and I may have some unexpected things to keep track of and I wanted another layer of security for those eventualities. Maybe a VPN doesn't offer that security. Thanks again!
I have used privateinternetaccess.com for years. Each time I go to JA, I use it for watch USA licensed Netflix programs. So no, speed is not an issue. :)
Thanks for your information, BrianJM. That's 2 for privateinternetaccess.com. Might give it a try next reach.
If you are truly concerned go with a reputable VPN... not a free one. Honestly as a Network Security engineer you will be fine as long as you dont keep that ledger and the computer side by side. Lock the ledger in your safe when you are not using it. You can in fact use software to encrypt your entire computer (I do this) that way even if your lappy is stolen your data is still difficult to retrieve.... not impossible but it takes a lot of skill, time and persistence to break down encryption. Most common thieves wouldnt even bother. Add to that the level of skill and equipment needed to sniff out your traffic... someone would have to basically target you. I can tell you that a little paranoia is good but the reality is you are in no further danger of cyber crime than you are at home. A slightly safer solution... use telephone banking. Being a frequent traveler to negril who also needs access to sensitive data while away Ive never felt my information was in danger. I run many types of security software on my laptop from intrusion detection to a custom firewall that I wrote. Ive never tracked any malicious traffic while there.... which is no fun for me cause I like a challenge :)
Better than the password ledger is a password vault. I use Keepass to enter all of my logins and to randomly generate passwords. I don't even know many of them. When I need to login somewhere I go to the entry for it in Keepass and either do an autotype of the login or cut and paste the password. The file for the passwords is heavily encrypted and sets on a google drive. I have the android version on phone and tablet and all share the same file. Much safer and more convenient than a ledger.
Thanks for all the information, I really do appreciate it; but I was just kidding about the ledger next to my computer. I actually have a file on my computer which is encrypted and has a very long password to open. Thanks again.Quote:
Originally Posted by craigandjen
This is a great thread! Thanks, WM.
Sounds like there are some very experienced people giving advice, so I have a question for you.
If your computer is protected with a 9 character strong password to access it, does that provide enough security to prevent a thief from even getting to your data if the computer is stolen?
Marcia,Quote:
Originally Posted by Nurse Marcia
That depends on the skill of the hacker. No lock can defeat a skillful, dedicated thief.
Cap
Although a good password helps, it is better to do the encryption, if your operating system offers that feature in it's privacy settings.Quote:
Originally Posted by Nurse Marcia
Thanks WM! I'm also on a MacBook so I will do that.
To be honest most operating system passwords (your log in screen) are not all that secure. Even a half assed hacker with the right software on a USB key can bypass that. That being said Mac operating system is a bit better than windows. It was built on a UNIX type architecture (BSD). Your best bet... hard drive encryption with at least.... I stress at least... 128 bit encryption. There is a caveat to that... you need a good fast processor in order not to bog down your system and lots of memory. For example... I have an i7 third gen, 32 gigs of ram and a solid state drive. Another option is a finger print reader (get a good one). It hooks to your USB and you need your finger print to unlock. Another but more difficult option is an authentication USB key. Basically you cant boot the PC unless the USB authentication key is in your USB port. Kinda like a chip car key. But as someone said... a good hacker is going to get through most things. But a good hacker is hard to find (again the media would have you think you are always in danger). A hacker generally doesnt hack unless they have a reason too. Hacking is not a simple task.Quote:
Originally Posted by Nurse Marcia
More great advice. I have had to "recover" machines when the owner forgot their password. Booting off a USB drive has come in handy on many occasions, even on a Mac or two. Even without the password, without encryption your data can be read rather easily booting this way.
But as mentioned, this encryption can slow an average machine down to the point of being unusable. A simple way to store your most confidential information is not to save it on the computer at all. I have several USB drives that I keep confidential data only stored on and only access it on the USB drive.
For the average user, none of this is necessary. Hackers look for something that will make them money, such as credit card numbers, banking info and the such. They really wont care about your documents or pictures or 99% of the stuff on your computer.
That is why major store chains get hacked, they have millions of credit cards stored and that info is worth the effort. If stolen, your single PC would most likely be blanked and reformatted with a new operating system.
Thanks to all for the information, most helpful.
Absolutely not. Full disk encryption is the only means to protect all of the data on your hard drive.Quote:
Originally Posted by Nurse Marcia
Otherwise, all that is required is to boot to a Ubuntu LiveCD and copy the data to a USD drive. Alternatively, the drive can be removed and placed in another computer or external enclosure and copied that way.
You can also create encrypted containers to files without encrypting the entire drive. But, I still recommend FDE. (https://support.apple.com/en-us/HT201599)
I disagree with this statement. :)Quote:
Originally Posted by Rob
I've been using FDE on every laptop I have owned since 2007 - Windows, OS X and Ubuntu. The laptop I am working off of right now is a 2011 MBP with a solid state drive, and it is still fast enough to run VMs, Photoshop, Lightroom, video editing, and anything else that is considered CPU, hard drive and graphically intensive. Even though it is 4 years old with FDE, I have no reason to replace it.
In many configuration, the performance impact is negligible.
http://osxdaily.com/2011/08/10/filev...mac-os-x-lion/
http://www.anandtech.com/show/4485/b...lion-review/18
http://apple.stackexchange.com/quest...cess-on-an-ssd
Especially in the past 3-4 years, FDE performance has improved substantially.