Skip to content
A Mac OS X application that automatically secures your Internet connection in unprotected wireless networks through SSH tunneling.
Objective-C C Shell C++
Latest commit 65dbff2 Oct 25, 2013 @chetan51 Bump version number
Failed to load latest commit information.
English.lproj Added advanced preferences tab with additional ssh args and command p… Nov 4, 2012
Growl.framework added Growl support Nov 26, 2010
Sidestep.xcodeproj Bump version number Oct 25, 2013
Sparkle.framework Initial commit Nov 18, 2010
media added screenshot Nov 30, 2010
scripts mitigate issue #35 Aug 7, 2012
.gitignore Updated gitignore file Mar 26, 2011
AppController.h Added advanced preferences tab with additional ssh args and command p… Nov 4, 2012
AppController.m remove warnings Oct 24, 2013
AppUtilities.h Initial commit Nov 19, 2010
AppUtilities.m Added copyrights Nov 18, 2010
Configurations.h Added copyrights Nov 19, 2010
Configurations.m Added copyrights Nov 19, 2010
DefaultsController.h Added advanced preferences tab with additional ssh args and command p… Nov 4, 2012
DefaultsController.m Added advanced preferences tab with additional ssh args and command p… Nov 4, 2012
EMKeychainItem.h Fixed keychain bugs, now have to move everything to EMKeychainItem Nov 21, 2010
EMKeychainItem.m Fix a few warnings by using @dynamic Aug 9, 2012
GrowlMessage.h added pref to enable/disable growl msgs Nov 26, 2010
GrowlMessage.m added pref to enable/disable growl msgs Nov 27, 2010
LICENSE Added license Dec 2, 2010
LoginItemController.h Fixed copyrights Nov 21, 2010
LoginItemController.m Fixed copyrights Nov 21, 2010
NetworkNotifier.h Fixed bug that caused Sidestep to crash when the application was move… Nov 23, 2010
NetworkNotifier.m Fixed connection watching for Lion (unverified on Snow Leopard) Jul 13, 2011
PasswordController.h Moved everything in PasswordController to use EMKeychainItem Nov 21, 2010
PasswordController.m Moved everything in PasswordController to use EMKeychainItem Nov 21, 2010
ProxySetter.h provide proxy status Aug 15, 2012
ProxySetter.m fixed issue #59 Oct 24, 2013
README.markdown Fixed missing link in README Mar 26, 2011
SSHAskPass.m Moved everything in PasswordController to use EMKeychainItem Nov 21, 2010
SSHConnector.h Added advanced preferences tab with additional ssh args and command p… Nov 4, 2012
SSHConnector.m Added advanced preferences tab with additional ssh args and command p… Nov 4, 2012
Sidestep-Info.plist Bump version number Oct 26, 2013
Sidestep_Prefix.pch Initial commit Nov 19, 2010
VPNInterfacer.h Added ability to get VPN service list from AppController Dec 6, 2010
VPNInterfacer.m Added growl support for VPN connections Dec 11, 2010
direct-insecure-icon.png Initial commit Nov 19, 2010
direct-insecure-icon@2x.png Added support for retina displays Oct 14, 2012
direct-secure-icon.png Initial commit Nov 19, 2010
direct-secure-icon@2x.png Added support for retina displays Oct 15, 2012
dsa_pub.pem Finished Sparkle updating integration Nov 20, 2010
main-icon.icns Switched to better main icon Nov 23, 2010
main.m Initial commit Nov 19, 2010
rerouted-secure-icon.png Added final icons and started on Run On Login preference Nov 19, 2010
rerouted-secure-icon@2x.png Added support for retina displays Oct 15, 2012

README.markdown

Icon Sidestep

Say Hello to Sidestep

The problem

When you connect to the Internet through an unprotected wireless network, such as at a coffeeshop or an airport, where you don’t have to enter a security key, you’re putting yourself at risk.

Attackers connected to the same network can easily intercept your unencrypted traffic and log in as you to services such as Facebook, Amazon, and LinkedIn.

Try Firesheep, a simple Firefox add-on, to see for yourself how serious the problem is and how easy it is for your privacy and security to be compromised.

The solution

When Sidestep detects you connecting to an unprotected wireless network, it automatically encrypts all of your Internet traffic and reroutes it through a secure connection to a server of your choosing, which acts as your Internet proxy. And it does all this in the background so that you don’t even notice it.

With Sidestep enabled, no one can eavesdrop on your traffic and impersonate you or see what you’re seeing as you browse the web. How does it work?

The first time you run Sidestep, you give it the details of the proxy server that you want it to use to securely reroute your Internet traffic through. And that’s it.

Welcome (main window)

Now, every time you connect to the Internet, Sidestep checks to see if your connection is already secured by WPA wireless security - if it is, Sidestep does nothing. After all, there’s no point in rerouting your connection and using up bandwidth on your proxy server if your connection is already secure. However, if your wireless connection is open and unprotected, Sidestep connects to your proxy server using SSH and reroutes all your traffic through it. This technology is called an SSH Tunnel Proxy.

In Geekspeak

When you connect to an insecure network, Sidestep opens an SSH tunnel with the proxy server, and then sets the Mac OS X system-wide SOCKS proxy to use this SSH connection. And since most Mac applications (including browsers) use this system-wide proxy to connect to the Internet through, they will all end up using the encrypted SSH tunnel.

Fighting Firesheep with fire

Firesheep, the Firefox add-on mentioned above, made a huge wave in the computer security world when it was released. Using it, anyone with Firefox can sit in a coffeeshop and click one button to hijack the browsing sessions of other users around them.

Sidestep is the easiest solution to the problem made mainstream by Firesheep. Set it up once, and never worry about attacks like Firesheep ever again.

Requirements

Mac OS X 10.5+ required

Project Homepage

Got a question or comment regarding Sidestep? Please stop by chetansurpur.com and let us know what you're thinking.

Something went wrong with that request. Please try again.