In
<of481ed85f.720f607e-on48257a3d.00242269-48257a3d.0026c...@us.ibm.com>,
on 07/16/2012
at 03:03 PM, Timothy Sipples <[email protected]> said:
>Yahoo! Mail -- the Web version -- *still* does not use HTTPS for
>most communications AFAIK. For example, if you're using a free
>wi-fi hotspot at a coffee shop, and you access Yahoo! Mail via
>their Web interface, practically everything except your login
>credentials flows in the clear. A fairly unsophisticated attacker
>can intercept that traffic and spoof your browser -- and access
>all your e-mail -- for up to 7 calendar days (the default timeout).
Are you still using Wired Equivalent Privacy (WEP) or something more
modern, e.g., Wi-Fi Protected Access (WPA)?
--
Shmuel (Seymour J.) Metz, SysProg and JOAT
Atid/2 <http://patriot.net/~shmuel>
We don't care. We don't have to care, we're Congress.
(S877: The Shut up and Eat Your spam act of 2003)
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
