Skip to content
This repository

A Mac OS X application that automatically secures your Internet connection in unprotected wireless networks through SSH tunneling.

branch: master
Octocat-spinner-32 English.lproj Added advanced preferences tab with additional ssh args and command p… November 04, 2012
Octocat-spinner-32 Growl.framework added Growl support November 26, 2010
Octocat-spinner-32 Sidestep.xcodeproj Bump version number October 25, 2013
Octocat-spinner-32 Sparkle.framework Initial commit November 18, 2010
Octocat-spinner-32 media added screenshot November 30, 2010
Octocat-spinner-32 scripts mitigate issue #35 August 07, 2012
Octocat-spinner-32 .gitignore Updated gitignore file March 26, 2011
Octocat-spinner-32 AppController.h Added advanced preferences tab with additional ssh args and command p… November 04, 2012
Octocat-spinner-32 AppController.m remove warnings October 24, 2013
Octocat-spinner-32 AppUtilities.h Initial commit November 18, 2010
Octocat-spinner-32 AppUtilities.m Added copyrights November 18, 2010
Octocat-spinner-32 Configurations.h Added copyrights November 18, 2010
Octocat-spinner-32 Configurations.m Added copyrights November 18, 2010
Octocat-spinner-32 DefaultsController.h Added advanced preferences tab with additional ssh args and command p… November 04, 2012
Octocat-spinner-32 DefaultsController.m Added advanced preferences tab with additional ssh args and command p… November 04, 2012
Octocat-spinner-32 EMKeychainItem.h Fixed keychain bugs, now have to move everything to EMKeychainItem November 21, 2010
Octocat-spinner-32 EMKeychainItem.m Fix a few warnings by using @dynamic August 09, 2012
Octocat-spinner-32 GrowlMessage.h added pref to enable/disable growl msgs November 26, 2010
Octocat-spinner-32 GrowlMessage.m added pref to enable/disable growl msgs November 26, 2010
Octocat-spinner-32 LICENSE Added license December 02, 2010
Octocat-spinner-32 LoginItemController.h Fixed copyrights November 21, 2010
Octocat-spinner-32 LoginItemController.m Fixed copyrights November 21, 2010
Octocat-spinner-32 NetworkNotifier.h Fixed bug that caused Sidestep to crash when the application was move… November 23, 2010
Octocat-spinner-32 NetworkNotifier.m Fixed connection watching for Lion (unverified on Snow Leopard) July 13, 2011
Octocat-spinner-32 PasswordController.h Moved everything in PasswordController to use EMKeychainItem November 21, 2010
Octocat-spinner-32 PasswordController.m Moved everything in PasswordController to use EMKeychainItem November 21, 2010
Octocat-spinner-32 ProxySetter.h provide proxy status August 15, 2012
Octocat-spinner-32 ProxySetter.m fixed issue #59 October 24, 2013
Octocat-spinner-32 README.markdown Fixed missing link in README March 26, 2011
Octocat-spinner-32 SSHAskPass.m Moved everything in PasswordController to use EMKeychainItem November 21, 2010
Octocat-spinner-32 SSHConnector.h Added advanced preferences tab with additional ssh args and command p… November 04, 2012
Octocat-spinner-32 SSHConnector.m Added advanced preferences tab with additional ssh args and command p… November 04, 2012
Octocat-spinner-32 Sidestep-Info.plist Bump version number October 25, 2013
Octocat-spinner-32 Sidestep_Prefix.pch Initial commit November 18, 2010
Octocat-spinner-32 VPNInterfacer.h Added ability to get VPN service list from AppController December 06, 2010
Octocat-spinner-32 VPNInterfacer.m Added growl support for VPN connections December 11, 2010
Octocat-spinner-32 direct-insecure-icon.png Initial commit November 18, 2010
Octocat-spinner-32 direct-insecure-icon@2x.png Added support for retina displays October 14, 2012
Octocat-spinner-32 direct-secure-icon.png Initial commit November 18, 2010
Octocat-spinner-32 direct-secure-icon@2x.png Added support for retina displays October 14, 2012
Octocat-spinner-32 dsa_pub.pem Finished Sparkle updating integration November 20, 2010
Octocat-spinner-32 main-icon.icns Switched to better main icon November 23, 2010
Octocat-spinner-32 main.m Initial commit November 18, 2010
Octocat-spinner-32 rerouted-secure-icon.png Added final icons and started on Run On Login preference November 19, 2010
Octocat-spinner-32 rerouted-secure-icon@2x.png Added support for retina displays October 14, 2012
README.markdown

Icon Sidestep

Say Hello to Sidestep

The problem

When you connect to the Internet through an unprotected wireless network, such as at a coffeeshop or an airport, where you don’t have to enter a security key, you’re putting yourself at risk.

Attackers connected to the same network can easily intercept your unencrypted traffic and log in as you to services such as Facebook, Amazon, and LinkedIn.

Try Firesheep, a simple Firefox add-on, to see for yourself how serious the problem is and how easy it is for your privacy and security to be compromised.

The solution

When Sidestep detects you connecting to an unprotected wireless network, it automatically encrypts all of your Internet traffic and reroutes it through a secure connection to a server of your choosing, which acts as your Internet proxy. And it does all this in the background so that you don’t even notice it.

With Sidestep enabled, no one can eavesdrop on your traffic and impersonate you or see what you’re seeing as you browse the web. How does it work?

The first time you run Sidestep, you give it the details of the proxy server that you want it to use to securely reroute your Internet traffic through. And that’s it.

Welcome (main window)

Now, every time you connect to the Internet, Sidestep checks to see if your connection is already secured by WPA wireless security - if it is, Sidestep does nothing. After all, there’s no point in rerouting your connection and using up bandwidth on your proxy server if your connection is already secure. However, if your wireless connection is open and unprotected, Sidestep connects to your proxy server using SSH and reroutes all your traffic through it. This technology is called an SSH Tunnel Proxy.

In Geekspeak

When you connect to an insecure network, Sidestep opens an SSH tunnel with the proxy server, and then sets the Mac OS X system-wide SOCKS proxy to use this SSH connection. And since most Mac applications (including browsers) use this system-wide proxy to connect to the Internet through, they will all end up using the encrypted SSH tunnel.

Fighting Firesheep with fire

Firesheep, the Firefox add-on mentioned above, made a huge wave in the computer security world when it was released. Using it, anyone with Firefox can sit in a coffeeshop and click one button to hijack the browsing sessions of other users around them.

Sidestep is the easiest solution to the problem made mainstream by Firesheep. Set it up once, and never worry about attacks like Firesheep ever again.

Requirements

Mac OS X 10.5+ required

Project Homepage

Got a question or comment regarding Sidestep? Please stop by chetansurpur.com and let us know what you're thinking.

Something went wrong with that request. Please try again.