I consider using OpenWRT to access internet via a public hotspot and would like to know if there are risks of getting compromised and how to mitigate it?
With public hotspot I mean a more or less public Wi-Fi network like in a hotel, maybe without encryption. My guess is that I need a VPN and I found two articles in the OpenWRT user guide which may be helpful in this context...
Are these two articles enough or do I need additional hardening when using public hotspots?
Most VPN providers seem to offer .ovpn configuration files, do I have to consider anything special regarding the content of the configuration file?
My goal is that there is no traffic outside the encrypted VPN tunnel so that no attacker can reach my computer through the unencrypted Wi-Fi. There may be exceptions when I trigger a firmware upgrade from CLI, but does OpenWRT do something like "calling home" without my knowledge?