Re: browser security qs

From: S. Pidgorny (slavickp_at_yahoo.com)
Date: 10/05/03

Next message: S. Pidgorny : "Re: Administrator pass"
Previous message: TIMTOM: "Re: Any good but FREE antivirus"
In reply to: TIMTOM: "browser security qs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sun, 5 Oct 2003 20:15:23 +1000

Inline:

"TIMTOM" <DHIDFK10110@hotmail.com> wrote in message
news:uR7Cx#xiDHA.2416@TK2MSFTNGP10.phx.gbl...
> hi all,
> i dont know 1st of all whether this is the proper group to put this qs,
but
> still since the qs is of security i am still asking the qs...
> While surfing , using any browser, many times it pops a Qs, especially
> during leaving login screens , "do you want to send this information
> unencryted form, YES/NO "....The Qs. is something of this sort and if one
> says no, then the page is not changed and you stuck up there itself...One
> has say Yes in order to change the screen...
> My Questions are :
> 1.What exactly is the meaning of this Qs?[does it mean, can somebody else
> watch/leakout the info]

Yes, if somebody wiretaps the connection, full access to the trancmited
information is possible.

> 2.How can one send the information encrypted from within the browser?

There should be support from the server that allows encryption of the
communication b/ween browser and the server.

> 3.If i dont send the information encryted , what risk am i facing ?

None.

> 4.It is said Spammers use some softwares to cull out email address from
the
> web and do their work... By sending such unencrypted info , is one
inviting
> more spam.

No. I never heard of spammers using communication interception for their
purposes - they try not to be criminals (communication eavesdropping is
crime in all democratic countries).

> 5.Lastly any free softwares which can integrate with browsers and send
info
> encrypted.

All modern browsers support encryption (using SSL/TLS) - but support from
the Web server is essential. There are some services that add encryption on
the client side to increase privacy - www.megaproxy.com is an example.

-- 
Svyatoslav Pidgorny, MVP, MCSE
-= F1 is the key =-

Next message: S. Pidgorny : "Re: Administrator pass"
Previous message: TIMTOM: "Re: Any good but FREE antivirus"
In reply to: TIMTOM: "browser security qs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Network transactions not allowed
... "No Authentication Required" means that the MSDTC communication on the ... Microsoft Online Partner Support ... Subject: Network transactions not allowed ... The computer with SQL Server 2005 is running in domain A, ...
(microsoft.public.sqlserver.connect)
RE: MessageSecurityException when consuming WCF service
... a WCF based client server communication application, ... Microsoft MSDN Online Support Lead ...
(microsoft.public.dotnet.languages.csharp)
Re: Encrypted JDBC between JAVA Middletier and MSSQL Server
... communication between driver and DBMS. ... I have my J2EE application (SUN JAVA Application server) accessing business data stored in MS SQL Server 2000. ... As evident Force Protocol Encryption feature in SQL Server can ensure encrypted communication betweeen MS client and server. ...
(microsoft.public.sqlserver.jdbcdriver)
Re: SSIS as part of scheduled job fails
... might not have Encryption support, but it shouldn't be trying to use SQL ... Microsoft SQL Server Management Studio ...
(microsoft.public.sqlserver.dts)
Re: Remoting security
... client and server in .Net Remoting. ... So all communication which goes over wire, ... > authorization, or encryption. ...
(microsoft.public.dotnet.security)