Electronics Work Wifi question.

UteChief · 09-18-2014, 09:05 PM

If I use the Tumblr app on my tablet or phone, can my employer see the content? There are some cool blogs that occasionally post NSFW items and I've decided not to use the app at work any longer but I was curious.

DaveNull · 09-18-2014, 09:08 PM

Do they have a way to tie your iPad to you the employee or are you just hanging out on the guest wifi with your work iPad?

Also, never underestimate how busy the guy is who handles the websense monitoring and how little he cares that you scrolled past a nipple while pooping.

DaveNull · 09-18-2014, 09:11 PM

Per this document it appears that Tumblr uses SSL all the time so unless they are doing a man in the middle attack on all SSL traffic (which I think is a huge dick move) you're likely fine.

UteChief · 09-18-2014, 09:12 PM

Yes, I have to log into the wifi. I'm sure they don't we have 4,000 employees but I'd rather not risk being the next person to post I need to find a job.

DaveNull · 09-18-2014, 09:16 PM

The other tip is that you ought to get to know your network engineers and security goons. They'll be more likely to just tip you off that they saw you doing something you shouldn't as opposed to turning you in to HR.

It's happened to me. It was nice to get a courtesy call to let me know that I had forgotten to turn off Bittorrent on my laptop instead of having a chat with the boss.

UteChief · 09-18-2014, 09:18 PM

What is a man in the middle attack?

DaveNull · 09-18-2014, 09:27 PM

It's when someone manages to get in between you and the server you're talking to in a way that they can see the traffic, even though you think it's encrypted. Criminals can do it, but so can companies with a Blue Coat appliance.

I think it's super unethical to do without telling your employees, even if you are whitelisting things like banks.

UteChief · 09-18-2014, 09:35 PM

Okay, thanks for the info!

**TribalElder** · 09-18-2014, 09:41 PM

Quote:

Originally Posted by UteChief

If I use the Tumblr app on my tablet or phone, can my employer see the content? There are some cool blogs that occasionally post NSFW items and I've decided not to use the app at work any longer but I was curious.

Use your LTE on your phone for NSFW

Unless you are excessively cruising NSFW you probably don't even register with the websense guys.

UteChief · 09-18-2014, 09:50 PM

I'm not searching out NSFW. I'll see a nice car or cafe racer and link to a new blog and BAM. NSFW!

**Saulbadguy** · 09-19-2014, 05:33 PM

Quote:

Originally Posted by DaveNull

Per this document it appears that Tumblr uses SSL all the time so unless they are doing a man in the middle attack on all SSL traffic (which I think is a huge dick move) you're likely fine.

Most next gen firewalls can do SSL inspection fairly easily. It's not a dick move.

**Ragged Robin** · 09-19-2014, 06:41 PM

you leave IP prints all over the internet with or without HTTPS, they would have to dig deep to find exactly WHAT (content) you were looking at but they can easily tell that you were using tumblr on the work ISP

CanadianChief · 09-19-2014, 06:48 PM

If they do some sort of Deep Packet Inspection then they can decrypt the traffic and inspect the content. They can block Tumblr based on the Application Signature built by the firewall provider specifically or just block all traffic that would fall into the same category as Tumblr.

**TribalElder** · 09-19-2014, 09:17 PM

Quote:

Originally Posted by Saulbadguy

Most next gen firewalls can do SSL inspection fairly easily. It's not a dick move.

Quote:

Originally Posted by CanadianChief

If they do some sort of Deep Packet Inspection then they can decrypt the traffic and inspect the content. They can block Tumblr based on the Application Signature built by the firewall provider specifically or just block all traffic that would fall into the same category as Tumblr.

All of these things assume that the company is a trusted root certificate authority on your end device. Corporate owned devices are understandable because they can push the cert down to your managed device. For personal devices such as your own phone, don't install the certificate.

09-18-2014, 09:05 PM
UteChief Veteran Join Date: Jan 2005 Location: SLC, UT Casino cash: $9025460	Work Wifi question. If I use the Tumblr app on my tablet or phone, can my employer see the content? There are some cool blogs that occasionally post NSFW items and I've decided not to use the app at work any longer but I was curious.
Posts: 1,680

09-18-2014, 09:08 PM	#2
DaveNull Veteran Join Date: Nov 2011 Location: Villa Straylight Casino cash: $10005610	Do they have a way to tie your iPad to you the employee or are you just hanging out on the guest wifi with your work iPad? Also, never underestimate how busy the guy is who handles the websense monitoring and how little he cares that you scrolled past a nipple while pooping.
Posts: 2,367

09-18-2014, 09:11 PM	#3
DaveNull Veteran Join Date: Nov 2011 Location: Villa Straylight Casino cash: $10005610	Per this document it appears that Tumblr uses SSL all the time so unless they are doing a man in the middle attack on all SSL traffic (which I think is a huge dick move) you're likely fine.
Posts: 2,367

09-18-2014, 09:12 PM	#4
UteChief Veteran Join Date: Jan 2005 Location: SLC, UT Casino cash: $9025460	Yes, I have to log into the wifi. I'm sure they don't we have 4,000 employees but I'd rather not risk being the next person to post I need to find a job.
Posts: 1,680

09-18-2014, 09:16 PM	#5
DaveNull Veteran Join Date: Nov 2011 Location: Villa Straylight Casino cash: $10005610	The other tip is that you ought to get to know your network engineers and security goons. They'll be more likely to just tip you off that they saw you doing something you shouldn't as opposed to turning you in to HR. It's happened to me. It was nice to get a courtesy call to let me know that I had forgotten to turn off Bittorrent on my laptop instead of having a chat with the boss.
Posts: 2,367

09-18-2014, 09:18 PM	#6
UteChief Veteran Join Date: Jan 2005 Location: SLC, UT Casino cash: $9025460	What is a man in the middle attack?
Posts: 1,680

09-18-2014, 09:27 PM	#7
DaveNull Veteran Join Date: Nov 2011 Location: Villa Straylight Casino cash: $10005610	It's when someone manages to get in between you and the server you're talking to in a way that they can see the traffic, even though you think it's encrypted. Criminals can do it, but so can companies with a Blue Coat appliance. I think it's super unethical to do without telling your employees, even if you are whitelisting things like banks.
Posts: 2,367

09-18-2014, 09:35 PM	#8
UteChief Veteran Join Date: Jan 2005 Location: SLC, UT Casino cash: $9025460	Okay, thanks for the info!
Posts: 1,680

09-18-2014, 09:50 PM	#10
UteChief Veteran Join Date: Jan 2005 Location: SLC, UT Casino cash: $9025460	I'm not searching out NSFW. I'll see a nice car or cafe racer and link to a new blog and BAM. NSFW!
Posts: 1,680

09-19-2014, 06:48 PM	#13
CanadianChief Liquor and Whores Join Date: Feb 2005 Location: A Trailer Park Near You! Casino cash: $2493495	If they do some sort of Deep Packet Inspection then they can decrypt the traffic and inspect the content. They can block Tumblr based on the Application Signature built by the firewall provider specifically or just block all traffic that would fall into the same category as Tumblr.
Posts: 1,294