There are variables, but that's what gmail tells us: http://mail.google.com/support/bin/answer.py?hl=en&answer=8155
Again, a much bigger danger is if he uses simple passwords and *types* them. However, this is more for online banking and shopping. Someone finding out his email login information is not much of a threat at all. Reason being, if his machine is compromised, they'll use it to relay spams from _below_ Windows, not from anything that uses his login. On Sat, Feb 21, 2009 at 11:01 AM, Fred Jones <[email protected]> wrote: > So if the webmail link says https (it does, btw) then the username and > password login information *is* automatically protected even on a > non-encrypted connection? > > Thanks again! > > From: Tony B <[email protected]> > To: [email protected] > Date: Saturday, February 21, 2009 08:52 am > Subject: Re: [CGUYS] wireless - no WEP or WPA / no VPN / SSL > He should make sure the link he uses to mail is https: not just http: . > He should use strong passwords, and try to avoid _typing_ passwords. > He should ensure a firewall is in place and active (the built in > Windows firewall is fine if he's using anything after about WinXP > SP2). > That's all the average home user needs to worry about. > If he's got Vista, he should run as a normal user, and not just click > on every notice that pops up without understanding it. > > > > ************************************************************************* > ** List info, subscription management, list rules, archives, privacy ** > ** policy, calmness, a member map, and more at http://www.cguys.org/ ** > ************************************************************************* > ************************************************************************* ** List info, subscription management, list rules, archives, privacy ** ** policy, calmness, a member map, and more at http://www.cguys.org/ ** *************************************************************************
