I kinda don’t trust my home network because my brother is douche and I feel like he’s gonna do some weird things with the connection, so I prefer to juse use my phone’s data (unlimited data plan) to avoid any shenanigans. Hypothetically, how much harm can an evil wifi do?
Does using HTTPS avoid all risks? What about evey program on your computer or every app on your phone, do they also have HTTPS everywhere on? (I use Android btw)
How much could a VPN do better that HTTPS cant?
HTTPS encrypts traffic making it hard for packet sniffers to know what is being transferred. If you are using unsecured WiFi, there is a chance of DNS manipulation like, switching domain names etc. If you’re using VPN, you hide your identity (IP) from the websites you visit and also if its configured to use their own DNS server, you can somewhat eliminate the DNS manipulation.
Anyways if you’re not sure, try to use a VPN and HTTPS everywhere and use firewall to lock down all your exposed ports. I don’t know how to configure firewall for port lockdown in android, but Rethink DNS (check Fdroid) is kind of helpful here.
Correct. Rethink DNS covers private DNS, VPN connections, and firewall for android.
Rethink does not have built in vpn, but can use wireguard config
Yes, this is what I’ve said.
If beginners are reading, don’t panic. This advice should be taken with a grain of salt. I remember being a beginner and getting this kind of advice and how it caused me a whole of lot of completely unnecessary anxiety.
VPN: all but unnecessary for security purposes (it’s useful for geo spoofing). If you really don’t trust your wifi, then start by manually setting your DNS (to 1.1.1.1 or whatever) as others have said.
HTTPS everywhere: sure, and this is now the default in your browser.
Firewall: totally unnecessary to fiddle with this on a home PC. It will be hard-set in your router anyway, there’s nothing to worry about.