There are different layers of security at play here. The first is the raw connection between your system and the given WiFi Access Point (AP). This is where WEP or WPA services apply. That way if someone where to sniff the WiFi band you were using they would not see the data stream as it would be encrypted!
Now let’s move up the IEEE/ISO network model to the next level involved here.
This is where the session to your host is involved. Within TCP/IP we use a means to translate names to IP addresses. Think how in years past we had the White & Yellow Pages phonebooks to look up a person or business phone number. This is the same within TCP/IP we call it a name server or just DNS. This is where you got the warning as the DNS you connected to did not have a trusted certificate for the site you where trying to connect to. The best way to express this is you get a phone call on your cellphone and the persons name is blocked so you don’t know who is calling you is it someone you know? Do you answer it? Let’s say you recognized the phone number as your mother's so you answer it. But you do one more thing! You create an entry in your contacts list so when your mother calls you again instead of seeing the number you see her name.
This is what you encountered as the DNS did not trust the hosts lookup, you over ruled it by telling your system to accept this is a trusted host so the next time you establish a connection to it your computer will accept it as trusted.
Sorry to be so long winded here...
The bottom line is your system is safe from anyone trying to connect to you from the schools network. As you would need to establish the connection not the other way around. Think of it this way, you’re calling them, they aren’t calling you as they don’t know what your IP address is (i.e. phone number).
But! You can put your self at risk if the system (web server host) was comprimised as the web site you connected to could be a cloned site that is spoofing the real site. As an example your Bank’s site and you give the fake site your name & password to get to your account.
What to do?? First you should speak to the person in charge of the web server and have them correctly register it so you know it’s the real McCoy! Once they do that you’ll want to delete the entry in your certificates listing you created so you don’t get re-directed to a fake host.
Questa risposta è stata utile?