Skip to content
A Mac OS X application that automatically secures your Internet connection in unprotected wireless networks through SSH tunneling.
Objective-C C Shell C++
Find file
Latest commit 65dbff2 Oct 25, 2013 @chetan51 Bump version number
Failed to load latest commit information.
English.lproj Added advanced preferences tab with additional ssh args and command p… Nov 4, 2012
Growl.framework
Sidestep.xcodeproj
Sparkle.framework
media added screenshot Nov 30, 2010
scripts
.gitignore
AppController.h
AppController.m
AppUtilities.h
AppUtilities.m
Configurations.h
Configurations.m
DefaultsController.h
DefaultsController.m
EMKeychainItem.h
EMKeychainItem.m
GrowlMessage.h added pref to enable/disable growl msgs Nov 26, 2010
GrowlMessage.m
LICENSE Added license Dec 2, 2010
LoginItemController.h
LoginItemController.m
NetworkNotifier.h
NetworkNotifier.m
PasswordController.h
PasswordController.m
ProxySetter.h
ProxySetter.m
README.markdown Fixed missing link in README Mar 26, 2011
SSHAskPass.m
SSHConnector.h Added advanced preferences tab with additional ssh args and command p… Nov 4, 2012
SSHConnector.m
Sidestep-Info.plist
Sidestep_Prefix.pch
VPNInterfacer.h
VPNInterfacer.m
direct-insecure-icon.png
direct-insecure-icon@2x.png
direct-secure-icon.png
direct-secure-icon@2x.png
dsa_pub.pem Finished Sparkle updating integration Nov 20, 2010
main-icon.icns
main.m Initial commit Nov 18, 2010
rerouted-secure-icon.png
rerouted-secure-icon@2x.png

README.markdown

Icon Sidestep

Say Hello to Sidestep

The problem

When you connect to the Internet through an unprotected wireless network, such as at a coffeeshop or an airport, where you don’t have to enter a security key, you’re putting yourself at risk.

Attackers connected to the same network can easily intercept your unencrypted traffic and log in as you to services such as Facebook, Amazon, and LinkedIn.

Try Firesheep, a simple Firefox add-on, to see for yourself how serious the problem is and how easy it is for your privacy and security to be compromised.

The solution

When Sidestep detects you connecting to an unprotected wireless network, it automatically encrypts all of your Internet traffic and reroutes it through a secure connection to a server of your choosing, which acts as your Internet proxy. And it does all this in the background so that you don’t even notice it.

With Sidestep enabled, no one can eavesdrop on your traffic and impersonate you or see what you’re seeing as you browse the web. How does it work?

The first time you run Sidestep, you give it the details of the proxy server that you want it to use to securely reroute your Internet traffic through. And that’s it.

Welcome (main window)

Now, every time you connect to the Internet, Sidestep checks to see if your connection is already secured by WPA wireless security - if it is, Sidestep does nothing. After all, there’s no point in rerouting your connection and using up bandwidth on your proxy server if your connection is already secure. However, if your wireless connection is open and unprotected, Sidestep connects to your proxy server using SSH and reroutes all your traffic through it. This technology is called an SSH Tunnel Proxy.

In Geekspeak

When you connect to an insecure network, Sidestep opens an SSH tunnel with the proxy server, and then sets the Mac OS X system-wide SOCKS proxy to use this SSH connection. And since most Mac applications (including browsers) use this system-wide proxy to connect to the Internet through, they will all end up using the encrypted SSH tunnel.

Fighting Firesheep with fire

Firesheep, the Firefox add-on mentioned above, made a huge wave in the computer security world when it was released. Using it, anyone with Firefox can sit in a coffeeshop and click one button to hijack the browsing sessions of other users around them.

Sidestep is the easiest solution to the problem made mainstream by Firesheep. Set it up once, and never worry about attacks like Firesheep ever again.

Requirements

Mac OS X 10.5+ required

Project Homepage

Got a question or comment regarding Sidestep? Please stop by chetansurpur.com and let us know what you're thinking.

Something went wrong with that request. Please try again.