Can someone in my home network hack into my computer?

I've heard that Linux users are very computer-savvy. So I figured I'd ask this question here.

How easy is to hack into someone's computer if it's on the SAME home network? (but on my computer I've configured it as a "public" network hoping that would be more secure)

I'm afraid it's pretty easy, right? I don't even have a password for my computer, I just hit the user button in the center when Windows boots up and then Windows finishes loading. I do have network and sharing turned off and I have AVG anti-virus 2011, and I have my windows firewall on.

Would someone on my home network have to be pretty sophisticated to be able to open files or log keystrokes or view my screen while I'm on it? Or is it so simple they can watch a few online hacking videos and download some basic software to do it? I hope it's the former!

Thank you in advance!

 

Thread moved, not a linux question...

 

Ok, my apologies. I thought it would be easier/quicker to get an answer on the Linux forum.

followup question: if someone in my network is hacking my computer, how can I find out?

-Anxiously awaiting reply

 

Are you concerned with people from OUTSIDE getting in to your home network and hacking your computer or are you concerned with computers that are allowed to be on your home network from hacking your computer?

 

Are you concerned about another person (family, friends, roommate) within the household connected to the same network being able to access your computer?

They may have access to the "Public" folder in "C:\Users\Public" but that's about it unless you specifically share any other folders/printers. As far as them being able to actually access, spy on, and modify your computer, they'd have a pretty hard time unless they were some hardcore hackers.

You can disable the public folder and absolutely all network sharing and that should lock most people out totally. Control Panel > Network and Sharing Center > Change advanced sharing settings (top left).

 

put a good password to your account and you are pretty safe machine wise. However, wireshark does have the capability to watch your network packets so anything that is not https is technically speaking open for inspection.

So it is possible for parent to check if you are going to some site, if the parent know what is wireshark.

 

And whoever controls the Router log-in has access to lots of info about what you do and where you go. So you'd best stop downloading that Russian pron now, or mommy's gonna slap you...

 

You can also set Windows to require a password when logging in from the net, but not locally at the computer.

Use the command Control Userpasswords2 and change the setting there.

This won't help you tho if you don't trust the people who have physical access to your computer..

 

The larger question is do you live with people you don't/can't trust?

 

If you're really worried you can just get another router and use it exclusively for yourself. Just say you're adding another router to "boost the signal" then just use WPA2 security with a strong password and set the router to hide SSID broadcast.

You might need a switch to connect the outside internet cable to and then from that connect the two routers.

 

Since they have physical access to your PC (sounds like they do), it would be much easier to hack it sitting in front of it, rather than over the network.

 

if this is a fear from a roommate possibly hacking you i would find a new place to live. life is way to stressful to have to come home to people you dont trust. as someone else mentioned it would be easier for them to have access to your room and do it that way rather then over a network.

 

That's what they'd have you believe! =p

And yes.

 

It's really easy. If they're already in your house, all they need is an axe.

But seriously, who the hell are you living with that might hack your computer?

Are you a CIA agent?

 

Configuring as a public network was smart.

It's not THAT easy and there are ways to defend against it. You should also look into using HTTPS instead of HTTP as a way to prevent them from looking at what you're doing online.

 

Quite intresting therad.

 

Slow down, don't swamp the guy with information. And don't get so technical

Are you concerned about people seeing what your doing ONLINE (what sites you visit, etc) or looking at what is saved on your computer?
Do you have access or exclusive control of the router?

A VPN might help you with your internet concerns, so long as they can't access the router. Even then it may still help, I haven't had involvement with them and security in local terms.
If you can control the router (and allowed to do so without suspicion) make sure the log on is something other than default, so you can control who changes what on the network.
As for files on your computer, there are encryption programs that might be helpful.. I've never even considered one however, so that's the extent of my expertise.

 

Is it possible in IE or FF to set every site to run as HTTPS? Whenever I have an option to run a site as HTTPS (facebook, twitter, windows live, etc.) I choose, however, is there a way to default every website to HTTPS?

 

HTTPS Everywhere | Electronic Frontier Foundation (for FF)

 

Protocol(whatever it is) is a two party thing so there is nothing that can be done from the 'client' side alone. TOR is the closest one can get.

Or you can do it like me of setting up a squid server on an VPS which is connected via openvpn. I use this setup to register google voice as well as in a few occasions getting through some non-free wifi hotspots via ip over DNS.

 

I get a firefox warning flag that flags that https everywhere site as bad juju. i wouldnt use that if firefox specifically blocks it

 

Use HTTPS everywhere as another user has stated and you should be fairly safe.

 

If you have an untrusted user on your home network you have bigger problems to worry about besides hacking. Ensure the following:
- they have no physical access to the computer
- make sure they have no access to the access point
- use strong passwords
- disable file sharing
- ask him, "excuse me, wt* are you doing?"

 

Such as

https://forum.notebookreview.com/

 

This does not actually work for me...

 

I would be surprised if it does work.

 

this.

10. Char.

 

A few important things:
1. Being in a "Home" network doesn't always mean you LIVE with other people that want to see your stuff.
2. "Public" doesn't save you from spying on your network traffic.

Explanation:
You move into new flat, and all around is full of free open flat Internet wireless right? I noticed that many times. Especially when people around you have IPTV and have unlimited data rates, they leave open wireless. You connect, get an IP from their DHCP on their router, and a gateway for internet. You are happy .

You are actually so happy that you forget to answer "Public" when Windows asks (I am sure many people will understand Windows question as "Where are you?" and answer "HOME"! ). You are now exposed, visible, reachable.

Now in the best case (when you choose "Public") you at least don't share anything (except Public folder). But you still are a part of the other network and all computers can come to you. And can ping you. And can test your firewall. And can monitor your traffic without you noticing. And can find a hole somewhere. And can reveal your passwords/habits/visited sites/dirty pics etc... that are sent through their network.

The only thing that can protect/save/hide your traffic is VPN (https sites also are safe but VPN hides ALL your traffic + your IP online is hidden/changed so even the legitimate serving site thinks you are someone else). Either use a free one like OpenVPN, Hotspot Shield or TorVPN or you pay and get much better speeds and traffic.

I hope it helps.

PS If I was a bad guy I would fish for guys who want free internet by using an Open wireless giving them free ride on Internet and by that time do whatever I want with their computers!

 

What do you think about a anti virus program? I'm using Kaspersky Internet Security, and it does ask when other apps want acces to internet. How safe will you consider that? I'm starting to be paranoid after reading everything here

 

Not all sites have https, but it's something.

 

1. Antivirus can save you if someone wants to breach in your computer (from your network card inside)
2. It will not prevent attacker reading your shares, but probably will if he wants to leave something malicious on your system
3. It will not solve the problem when someone can read your traffic once it leaves your computer.

The point is that antivirus cannot check your traffic once it leaves your network card. It is like guards inside the fortress. VPN is like armored tunnel from inside your fortress to another fortress.

Don't be paranoid, just learn how things work and use simple tools. All is easily available.

 

It is a good solution if you can use it (much easier than VPN). But it depends on site that must initiate https and not you.

What worries me is that I recently bought a couple of games from Gamersgate (Metro2033 and Witcher for 8 USD or something) and that site despite it requires you to log in doesn't use https! And it stores game keys, some kind of points and other info. I paid through Paypal and it uses https (of course). That is the first time I saw a legal site that sells stuff doesn't use https.

It is very risky in my opinion.

try it for yourself - go to Gamersgate.com And it will not have https nor little lock sign. Now login. No https, no lock sign. Now go to your game and reveal your game key. No https no lock sign. So I haven't checked other ways of protection they could use, but somehow I don't like it.

They say this:
Security
GamersGate has taken steps to ensure that the personally identifiable information it collects is secure, including employing electronic security systems and password protections designed to guard against unauthorized access.

Perhaps once they put your data into their database? Hm.

EDIT: I checked their code - they build https and ssl links in javascript. So it is ok

 

I see. I consider my self as safe however, I have a strong WiFi password like with uppercase and lowerase and numbers. Also, I have everything 'shared' off. (from network settings) I also sometimes check my ruter of anyone else that I don't know is connected or not.. Ugh, also use sites like facebook with https.

 

You are ok on your wireless (make sure to use WPA2 if you can). The question is when you join someone elses ("open" or "free") or you don't trust other people in the network.