BleepingComputer.com: Security - Unsecured Wrieless-Hotel

I am on a secure page on an unsecured hotel wireless connection. Is it safe to enter financial info on this page? The lower right hand section has the secure lock, but I am not certain if someone can see the info that is not blocked out (like the password is).

pagemaker, on 01 January 2011 - 11:50 AM, said:

In theory, yes, it is safe. But there are some risks. I would not do it.

The secure lock you see is actually for the page you are viewing right now, it is not for the page to which you will be posting your confidential data.
By convention, the data you will be posting will also use HTTPS, but it's just that: a convention. Unless you examine the HTML code (and probably the JavaScript code), you can't be 100% sure that your data will be posted with HTTPS. But in almost all of the cases, it will be.

You should also inspect the certificate by clicking on the secure lock, to be sure that it is a certificate from your bank, issued by a CA you trust.

If you're using Firefox, this extension - https://addons.mozilla.org/en-US/firefox/addon/3199/ - Link Alert, may be useful to you. Basically when you hover over a link or button, a tooltip displays next to the pointer stating the destination. So you can easily tell if it's https or not..

Here is an interesting press release:

Quote

http://www.sbsheriff.org/pr/12301001.html