Is it safe to use the browser plug-in (extension) or Web Vault on public Wi-Fi?


#1

This is really 2 questions, but they are so similar, I’ll roll it into one: Is it safe to log into the bitwarden browser plug-in (extension) or Web Vault when on public Wi-Fi?


#2

As far as i know Bitwarden is only accessible over https. That would mean it’s always encrypted. Therefor it should be save.
On the other hand, every open WiFi could be a fishing attempt. So you probably don’t want to use any password over an open WiFi.


#3

Is that a contradiction? You’re saying that since every open WiFi could be a phishing attempt, you probably don’t want to use any password (presumably even over HTTPS). But at the same time, it’s okay to access bitwarden?


#4

Theoretically, you are safe using https in an open WiFi.
The problem with open WiFis is, that without authentification you can’t be sure, that you are not just connected to a phishing accesspoint.

So, it is secure as concept, but never secure in pratice. I would not use open WiFi for more than a google search.

All according to my knowlege. I’m an IT guy, but no expert on security.


#5

It reminds me of what Albert Einstein once said:

“In theory, theory and practice are the same. In practice, they are not.”

Hopefully @kspearrin or a security expert can add their conclusions.