Can SSL sessions be compromised?

Hello I hope someone will take the time to answer my question. I'm
with a contractor inside someone else's facility. The facility allows
us to use their computers for internet access to our headquarters. We
communicate with HQ via browser-based sessions ("webmail") and this is
via SSL (https) connections. Sometimes we transmit documents (Word,
PDF, etc) attachments using webmail during these SSL sessions.

All of this flows through the facility's proxy servers. They have
several "detective" programs running.

We don't have anything to hide but I'm wondering how much of this they
can see???

I do get "intrusion detected" messages but we think that's because the
IP address of the computer I use is different than the IP address of
the proxy machine -- if I enable local cookies for authentication this
goes away.

Thanks.

.

Relevant Pages

  • Compromising SSL security?
    ... with a contractor inside someone else's facility. ... communicate with HQ via browser-based sessions and this is ... etc) attachments using webmail during these SSL sessions. ... All of this flows through the facility's proxy servers. ...
    (microsoft.public.security)
  • SSL compromised?
    ... with a contractor inside someone else's facility. ... communicate with HQ via browser-based sessions and this is ... etc) attachments using webmail during these SSL sessions. ... All of this flows through the facility's proxy servers. ...
    (comp.security.unix)
  • Re: Compromising SSL security?
    ... | with a contractor inside someone else's facility. ... Sometimes we transmit documents (Word, ... etc) attachments using webmail during these SSL sessions. ... | All of this flows through the facility's proxy servers. ...
    (microsoft.public.security)