Re: Web mail intercepted! How?

From: Andrew Haninger (ahaning_at_gmail.com)
Date: 08/05/05

  • Next message: xyberpix: "Re: Mike Lynn released information about a hacking Cisco IOS" 
    Date: Fri, 5 Aug 2005 13:13:05 -0400
To: McLain Causey <mclaincausey@yahoo.com>

    On 8/4/05, McLain Causey <mclaincausey@yahoo.com> wrote:
    > That's really all there is to say about it. I think most services
    > use SSL in the authentication phase only, if at all.
    FWIW, Gmail always uses SSL for authentication. However, if you visit
    it with http://gmail.google.com/, it will use HTTP after you
    authenticate. If you use https://gmail.google.com/, it will use HTTPS
    after you authenticate.

    Kinda cool, but I wish I could make it always forward me to HTTPS.

    -Andy

  • Next message: xyberpix: "Re: Mike Lynn released information about a hacking Cisco IOS"

    Relevant Pages

    • Re: Mixed Mode Authentication in .net 2.0
      ... There are two parts to SSL, which is why this can be confusing. ... encryption and authentication of the server. ... ADFS supports a component called the federation service proxy which is ...
      (microsoft.public.dotnet.framework.aspnet.security)
    • Re: Forms Authentication with http/https
      ... If you still want to switch to http (althought I would not recomend you ... > FormsAuthentication.RedirectFromLoginPage methods redirects to original ... > protocol is still SSL and not just http as expected. ... Site B - An application which does authentication which is https based ...
      (microsoft.public.dotnet.framework.aspnet.security)
    • Re: Search not working
      ... Management>Authentication Providers>Edit Authentication, does not provide the ... ability to indicate whether the web application is using SSL or not. ... I changed IIS Authentication for the web site back to Integrated ... I have installed an SSL certificate and required SSL ...
      (microsoft.public.sharepoint.windowsservices)
    • Re: Can SSL sessions be compromised?
      ... the proxy machine -- if I enable local cookies for authentication this ... your "SSL server" machine may be trying to catch some simple types of ... information carried by the digital certificates was ... clicking on any RFC number, brings up that RFC in the lower RFC summary ...
      (comp.security.misc)
    • Re: Postfix + Auth + SSL + pop3s/imaps
      ... >> to use for authentication. ... Or I would still need SASL for smtp? ... >> if it's Plain or Login because I'm going to use SSL and that would ... >> encrypt both Login and the data channel. ...
      (freebsd-questions)