Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




364 posts

Ultimate Geek
+1 received by user: 12


Topic # 160167 26-Dec-2014 19:41
Send private message

So I'm out and about on my Christmas holiday & came across a Spark phone box with free Wifi (which I get free on my plan)
connected my iPhone 6 to the network...  Couldn't do anything, chrome gave me security errors saying the network wasn't protected etc and wouldn't let me browse or access anything internet related... 

Any reason why this is?




 

Filter this topic showing only the reply marked as answer Create new topic
7845 posts

Uber Geek
+1 received by user: 2588

Subscriber

  Reply # 1204211 26-Dec-2014 20:44
Send private message

have you recieved the code to login?



364 posts

Ultimate Geek
+1 received by user: 12


  Reply # 1204216 26-Dec-2014 20:48
Send private message

Didn't need a code to connect to the box.

If it had a browser login, chrome (iOS8) wouldn't let anything open without giving me the security warning. Had no way to get past that page.




 

 
 
 
 


7845 posts

Uber Geek
+1 received by user: 2588

Subscriber

  Reply # 1204217 26-Dec-2014 20:51
2 people support this post
Send private message

i think you have miss understood how it works

http://www.spark.co.nz/help/mobileandmobilebroadband/plans-and-services/free-wifi-zones/


Also try a different browser

:edit: try a different device



364 posts

Ultimate Geek
+1 received by user: 12


  Reply # 1204219 26-Dec-2014 21:00
Send private message

Looking at how to connect to the free wifi on Sparks website shows I did what it said.

I connected to Spark wifi, expected to have my browser redirect me to a login page of some sort, 
but it just came up with a security error warning about things hacking my device... 

Something isn't right with that.  (on the Spark box in Woodville)




 

7845 posts

Uber Geek
+1 received by user: 2588

Subscriber

  Reply # 1204224 26-Dec-2014 21:20
Send private message

again have you tried a different browser and a different device? that will rules out the wifi hot spot if it works in a different browser or device

you could just ignore the security message in the browser



364 posts

Ultimate Geek
+1 received by user: 12


  Reply # 1204229 26-Dec-2014 21:25
Send private message

I did try to ignore the warning, wouldn't let me past the warning which I thought seemed a bit odd.




 

7845 posts

Uber Geek
+1 received by user: 2588

Subscriber

  Reply # 1204230 26-Dec-2014 21:32
Send private message

Brandonrnz: I did try to ignore the warning, wouldn't let me past the warning which I thought seemed a bit odd.


again have you tried a different browser or device?



364 posts

Ultimate Geek
+1 received by user: 12


  Reply # 1204244 26-Dec-2014 21:35
Send private message

Didn't have time. Changed back to 3G (which is pretty shocking here). Was more curious to see if any others have experienced the issue...




 

4993 posts

Uber Geek
+1 received by user: 1327

Trusted
Microsoft

  Reply # 1204257 26-Dec-2014 21:58
2 people support this post
Send private message

I've not had this issue. It just seems to work, as I walk past food halls or drive past WiFi enabled.phone boxes my Windows Phone latches on and free data FTW

21613 posts

Uber Geek
+1 received by user: 4430

Trusted
Subscriber

  Reply # 1204276 26-Dec-2014 22:26
Send private message

Yes, have that issue. They are man in the middleing any https connection to try to get the splash screen show. They are advising people to ignore security warnings to get the spoofed content to show.

IMO both are inexcusable. At least on an android the OS trys a http request and will specifically pop open a browser to the non https site to get you to log in, whereas https gets you an error that you are being spoofed, because you are.

Try opening a browser and going to a URL that doesnt have https like yahoo.com and it should redirect you without the error.




Richard rich.ms



364 posts

Ultimate Geek
+1 received by user: 12


  Reply # 1204483 27-Dec-2014 13:10
Send private message

richms: Yes, have that issue. They are man in the middleing any https connection to try to get the splash screen show. They are advising people to ignore security warnings to get the spoofed content to show.

IMO both are inexcusable. At least on an android the OS trys a http request and will specifically pop open a browser to the non https site to get you to log in, whereas https gets you an error that you are being spoofed, because you are.

Try opening a browser and going to a URL that doesnt have https like yahoo.com and it should redirect you without the error.


Gave your suggestion a try. Had that security error again in town at another spark box. Opened Trademe and sure enough the login page appeared. Thanks!




 

27270 posts

Uber Geek
+1 received by user: 6699

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  Reply # 1204524 27-Dec-2014 15:36
Send private message

Spark forgot to renew their SSL cert so everybody saw an SSL error trying to log in for about a 48hr period a couple of weeks ago. If you were running Android Lollipop you wouldn't have been able to log in at all over this period due to the changes in captive portal support in Lollipop.


3266 posts

Uber Geek
+1 received by user: 1276

Subscriber

  Reply # 1205042 28-Dec-2014 17:07
Send private message

Also Im guessing that Chrome supports "Strict transport Security" If so it means that when you visit a website that also supports it. The browser will never allow you to bypass any future SSL errors for that site. There were too many cases of users simply bypassing SSL warnings and then getting hacked / passwords stolen ect.





21613 posts

Uber Geek
+1 received by user: 4430

Trusted
Subscriber

  Reply # 1205130 28-Dec-2014 20:33
Send private message

Made worse by phones stupid error messages - "A secure connection could not be established" with Continue and cancel is the usual one I see.

Most captive portals seem to just block port 443 till you authenticate, no idea why spark chose to intercept it which is clearly broken. Also no idea why they actually tell people to ignore security warnings so that they can log in, which is promoting bad practices.




Richard rich.ms

Filter this topic showing only the reply marked as answer Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Geekzone Live »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.