Sidd wrote:
>
> | Niether one has https in the url window or indicates a "closed
> | padlock" in the status bar (altho the logon page does send the
> | form infomation to an https page). Unless I misunderstand
> | things this means the form information is not sent encrypted.
>
> If the form is submitted to an https page then the data in the form is
> encrypted. The fact that the blank form page is not encrypted is of no
> consequence. All it means is that the blank form was delivered to your
> machine unencrypted.
I believe the below is true but not positive:
If you don't have an encrypted window and you type a userID and
password, I think your keystrokes can be picked up by network sniffers.
If you're typing into a 128 bit SSL encrypted window, sniffers can't
log your key strokes.
Schwab's login window is encrypted from the start:
https://investing.schwab.com/trading/start
As is e-gold's:
https://www.e-gold.com/acct/manager.htm
Bob
---
You are currently subscribed to e-gold-list as: [email protected]
To unsubscribe send a blank email to [EMAIL PROTECTED]
