Skip to content
A Mac OS X application that automatically secures your Internet connection in unprotected wireless networks through SSH tunneling.
Objective-C C Shell C++
Find file
New pull request
Latest commit 65dbff2 @chetan51 Bump version number
Failed to load latest commit information.
English.lproj Added advanced preferences tab with additional ssh args and command p…
Growl.framework added Growl support
Sidestep.xcodeproj Bump version number
Sparkle.framework Initial commit
media added screenshot
scripts mitigate issue #35
.gitignore Updated gitignore file
AppUtilities.h Initial commit
AppUtilities.m Added copyrights
Configurations.h Added copyrights
Configurations.m Added copyrights
DefaultsController.m Added advanced preferences tab with additional ssh args and command p…
EMKeychainItem.h Fixed keychain bugs, now have to move everything to EMKeychainItem
EMKeychainItem.m Fix a few warnings by using @dynamic
GrowlMessage.h added pref to enable/disable growl msgs
GrowlMessage.m added pref to enable/disable growl msgs
LICENSE Added license
LoginItemController.h Fixed copyrights
LoginItemController.m Fixed copyrights
NetworkNotifier.h Fixed bug that caused Sidestep to crash when the application was move…
NetworkNotifier.m Fixed connection watching for Lion (unverified on Snow Leopard)
PasswordController.h Moved everything in PasswordController to use EMKeychainItem
PasswordController.m Moved everything in PasswordController to use EMKeychainItem
ProxySetter.h provide proxy status
ProxySetter.m fixed issue #59
README.markdown Fixed missing link in README
SSHAskPass.m Moved everything in PasswordController to use EMKeychainItem
SSHConnector.h Added advanced preferences tab with additional ssh args and command p…
SSHConnector.m Added advanced preferences tab with additional ssh args and command p…
Sidestep-Info.plist Bump version number
Sidestep_Prefix.pch Initial commit
VPNInterfacer.h Added ability to get VPN service list from AppController
VPNInterfacer.m Added growl support for VPN connections
direct-insecure-icon.png Initial commit
direct-insecure-icon@2x.png Added support for retina displays
direct-secure-icon.png Initial commit
direct-secure-icon@2x.png Added support for retina displays
dsa_pub.pem Finished Sparkle updating integration
main-icon.icns Switched to better main icon
main.m Initial commit
rerouted-secure-icon.png Added final icons and started on Run On Login preference
rerouted-secure-icon@2x.png Added support for retina displays


Icon Sidestep

Say Hello to Sidestep

The problem

When you connect to the Internet through an unprotected wireless network, such as at a coffeeshop or an airport, where you don’t have to enter a security key, you’re putting yourself at risk.

Attackers connected to the same network can easily intercept your unencrypted traffic and log in as you to services such as Facebook, Amazon, and LinkedIn.

Try Firesheep, a simple Firefox add-on, to see for yourself how serious the problem is and how easy it is for your privacy and security to be compromised.

The solution

When Sidestep detects you connecting to an unprotected wireless network, it automatically encrypts all of your Internet traffic and reroutes it through a secure connection to a server of your choosing, which acts as your Internet proxy. And it does all this in the background so that you don’t even notice it.

With Sidestep enabled, no one can eavesdrop on your traffic and impersonate you or see what you’re seeing as you browse the web. How does it work?

The first time you run Sidestep, you give it the details of the proxy server that you want it to use to securely reroute your Internet traffic through. And that’s it.

Welcome (main window)

Now, every time you connect to the Internet, Sidestep checks to see if your connection is already secured by WPA wireless security - if it is, Sidestep does nothing. After all, there’s no point in rerouting your connection and using up bandwidth on your proxy server if your connection is already secure. However, if your wireless connection is open and unprotected, Sidestep connects to your proxy server using SSH and reroutes all your traffic through it. This technology is called an SSH Tunnel Proxy.

In Geekspeak

When you connect to an insecure network, Sidestep opens an SSH tunnel with the proxy server, and then sets the Mac OS X system-wide SOCKS proxy to use this SSH connection. And since most Mac applications (including browsers) use this system-wide proxy to connect to the Internet through, they will all end up using the encrypted SSH tunnel.

Fighting Firesheep with fire

Firesheep, the Firefox add-on mentioned above, made a huge wave in the computer security world when it was released. Using it, anyone with Firefox can sit in a coffeeshop and click one button to hijack the browsing sessions of other users around them.

Sidestep is the easiest solution to the problem made mainstream by Firesheep. Set it up once, and never worry about attacks like Firesheep ever again.


Mac OS X 10.5+ required

Project Homepage

Got a question or comment regarding Sidestep? Please stop by and let us know what you're thinking.

Something went wrong with that request. Please try again.