-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 is the issue here not with gmail, but perhaps javascript? can anyone confirm that there is no in-secure re-direction if javascript is dis-abled? if there still is (in-secure re-direction), please be specific about how to observe such an in-security.
-----BEGIN PGP SIGNATURE----- iQA/AwUBRQ95Vl4XwiTbvfKgEQIf2QCfdgHo1eD4k/ISshEzw6A3f6UsMDUAoKli lp1ypjK6oqAE1oPb+3yLZTkx =tXeU -----END PGP SIGNATURE-----
