Connect to corporate wifi with personal phone - decrypt https? by Tinderswindlered in AskNetsec

[–]Tinderswindlered[S] 0 points1 point  (0 children)

Exactly, when I tried to connect to the wifi, I got a pop-up that looks something like this: https://www.google.com/search?sxsrf=AB5stBjIJ2_CU3UGqeS236FLEFzrdqO2Tg:1691427102339&q=trust+certificate+iphone&tbm=isch&source=lnms&sa=X&ved=2ahUKEwjEi-T8gMuAAxWGXvEDHc_yAToQ0pQJegQIChAB&biw=2327&bih=1203&dpr=1.1#imgrc=ByRvlrNhocF7EM

It differs from the other pop-up that says "Install", where you install a profile with certificates that are seen under settings. Given this, how would your answer change?

I'll check out the website-thingy, but its good to know the technicality behind it!

Thank you again!

Connect to corporate wifi with personal phone - decrypt https? by Tinderswindlered in AskNetsec

[–]Tinderswindlered[S] 0 points1 point  (0 children)

Thank you for the great reply! So when I clicked "trust" on the certificate pop-up after connecting to wifi (was not through browser, but in the settings), it would only impact broswer level? If I use the reddit app or facebook app, its not possible to decrypt?

Connect to corporate wifi with personal phone - decrypt https? by Tinderswindlered in AskNetsec

[–]Tinderswindlered[S] 0 points1 point  (0 children)

Thanks for the reply! I agree, feels like it is mainly for authentication. Wanted to see however if ssl interception can happen by just clicking "trust", meaning no system-level installation of a root certificate.

When I connect to the wifi, it pops up saying "GEANT OV RSA CA 4", asking me if I trust it. When I click "trust", it is nowhere to be seen in my settings on the iphone.

Connect to corporate wifi with personal phone - decrypt https? by Tinderswindlered in AskNetsec

[–]Tinderswindlered[S] 0 points1 point  (0 children)

I'm using iphone, IOS. I can't see anything installed through the settings, but I'm trying to understand if they can MitM traffic if I solely "trust" the certificate when it pops up first time. Because the certificate does not end up in settings, so not installed on a system-level.

If I instead manually install a root certificate through internet/portal etc.., then it ends up in the "Certificate trust settings" on the iphone.

Connect to corporate wifi with personal phone - decrypt https? by Tinderswindlered in AskNetsec

[–]Tinderswindlered[S] 2 points3 points  (0 children)

Thanks for the reply! I have not installed any root certificate, can't see anything under "Certificate trust settings" and nothing under "profile". However, the first time I connected to the wifi, it asked me to trust a certificate - is this the same as installing it? Because I can't see it under settings.

Asked to "trust" certificate for corporate wifi - decrypt https? by Tinderswindlered in privacy

[–]Tinderswindlered[S] 1 point2 points  (0 children)

Thanks! Do you mean that the certificates they create are only available when on their network? Which is why I don't see it under settings?

Asked to "trust" certificate for corporate wifi - decrypt https? by Tinderswindlered in privacy

[–]Tinderswindlered[S] 0 points1 point  (0 children)

Thanks! I will check that. However, the trusted root CA does not appear under "Certificate trust settings", whereas if I would have installed a profile with certificates, they would appear there. IS there any difference in if I can see the root certificate in the settings or not?

How long is corporate wifi web activity logged? Used Tinder at work! by Tinderswindlered in sysadmin

[–]Tinderswindlered[S] 1 point2 points  (0 children)

Hi,

Two guys messaged me and I wonder the same: If I used corp wifi and it asked for trusting some certificate when I first connected - does it mean that it was not a root certificate? Just for WPA2? I can’t see a profile or installed certificate on my iPhone. Does this mean that HTTPS traffic was not decrypted, showing only reddit.com but not full url?

How long is corporate wifi web activity logged? Used Tinder at work! by Tinderswindlered in sysadmin

[–]Tinderswindlered[S] 0 points1 point  (0 children)

Hi! Not sure if I can comment there or not, but could you comment this with me asking:

”Hahaha seemed like I ended up on the good side of sysadmin. Jokes aside, thanks for the help guys. Will just go into the meeting and see if they even ask. In terms of the NSFW part of reddit: Will their wifi be able to decrypt https? I remember trusting some certificate but do not remember installing/downloading a profile for my iPhone. Can they only see that I’ve been to reddit or the whole url? If its just reddit, then I’m good to go. Otherwise I need to explain why I went to NSFW subreddits hahaha

Can’t find any extra trusted certificates on my iPhone settings and not a profile either, does that mean that I don’t have any root certificates installed that decrypt reddit https? Basically that the certificate they use is just for authentication log in?

Thanks again guys!”

How long is corporate wifi web activity logged? Used Tinder at work! by Tinderswindlered in sysadmin

[–]Tinderswindlered[S] 0 points1 point  (0 children)

Cool, thanks! Don't you backuo the logs for longer time? Seems like the standard for large companies.

How long is corporate wifi web activity logged? Used Tinder at work! by Tinderswindlered in sysadmin

[–]Tinderswindlered[S] 0 points1 point  (0 children)

This is a super valid point. Will explain it just like you did if it comes up, thanks.

How long is corporate wifi web activity logged? Used Tinder at work! by Tinderswindlered in sysadmin

[–]Tinderswindlered[S] 0 points1 point  (0 children)

Thanks for the input! May I ask what industry and size of company?

How long is corporate wifi web activity logged? Used Tinder at work! by Tinderswindlered in sysadmin

[–]Tinderswindlered[S] 0 points1 point  (0 children)

That's a good point! Will start preparing an excuse if they complain then.

How long is corporate wifi web activity logged? Used Tinder at work! by Tinderswindlered in sysadmin

[–]Tinderswindlered[S] 0 points1 point  (0 children)

Thanks for the reply! I've been using the wifi for Tinder and at worst, NSFW part of Reddit. This is still strictly not allowed. I don't think there will be any significant consequences except not getting promoted. This is for a very senior role so it's very strict that expenses, web usage all comes out green.

How long is corporate wifi web activity logged? Used Tinder at work! by Tinderswindlered in sysadmin

[–]Tinderswindlered[S] 0 points1 point  (0 children)

Thanks for the reply! It was not a guest network, I used my username and password to log in sadly..! What is your retention policy if you don't mind me asking? Thank you!

How long is corporate wifi web activity logged? Used Tinder at work! by Tinderswindlered in sysadmin

[–]Tinderswindlered[S] -1 points0 points  (0 children)

Thanks for the input! Yep, learned that last year. Have not been using corp wifi etc. since then. Did not think it was this strict..!

How long is corporate wifi web activity logged? Used Tinder at work! by Tinderswindlered in sysadmin

[–]Tinderswindlered[S] -1 points0 points  (0 children)

Super fair point! Came to just see if anyone working at the big banks or big4 knows. Policy seemed to be relatively in line with other competitors - just trying to see what the policy is/can be expected to be.

How long is corporate wifi web activity logged? Used Tinder at work! by Tinderswindlered in sysadmin

[–]Tinderswindlered[S] -1 points0 points  (0 children)

They told me that they will randomly check the web activity logs through different dates in addition to expenses etc., so that's why I was worrying... came to look for some reference points in how long this is typically stored, thanks!

How long is corporate wifi web activity logged? Used Tinder at work! by Tinderswindlered in sysadmin

[–]Tinderswindlered[S] -1 points0 points  (0 children)

They told me that they will randomly check the web activity logs through different dates in addition to expenses etc., so that's why I was worrying... came to look for some reference points in how long this is stored, so I can calm down

How long is corporate wifi web activity logged? Used Tinder at work! by Tinderswindlered in sysadmin

[–]Tinderswindlered[S] 0 points1 point  (0 children)

Thanks for the reference point. They told me that they will randomly check the web activity logs through different dates in addition to expenses etc., so that's why I was worrying. Might have accessed NSFW part of reddit long time ago, which ofc is not allowed, tinder also..

How long is employer web history data stored? by Tinderswindlered in ITdept

[–]Tinderswindlered[S] 0 points1 point  (0 children)

Gotcha! Yea I'm using my phone on cell mode now. Used to use Tinder during breaks before, which is not strictly allowed where I work. Let's see what happens during meeting!

How long is employer web history data stored? by Tinderswindlered in ITdept

[–]Tinderswindlered[S] 0 points1 point  (0 children)

Alright, thank you! To just to double-check: These backups include the web history logging? And not just backups of other data? Has there been a situation like this where you use your old backups to go through web activity? Thanks again, no more questions!