Nick Bright wrote: > Ken A wrote: >> Nick Bright wrote: >>> Tomas Kuliavas wrote: >> >>>> Have you tried to protect your webmail traffic? Signed SSL certificate >>>> costs less than 20 USD. >>> I'd expect they support SSL on their end, this probably wouldn't make >>> any difference. >> >> The difference is that fewer passwords could easily be stolen if you >> used & forced SSL. This is certainly relevant. >> Ken > > How so? that would only prevent man in the middle attacks, when the > problem is almost certainly in a keylogger or trojan on the end users' > PC that's an assumption, isn't it.. Good security doesn't work that way. You have to do what you can first, then look around for who to blame when things go wrong. ;-) Ken - where the keyboard input isn't encrypted by the SSL certificate. > > Though yes, I do want to use/force an SSL certificate, I do not agree > that it would help with the issue at hand. > >> >>> - Nick Bright >>> -- Ken Anderson Pacific.Net ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ -- squirrelmail-users mailing list Posting Guidelines: http://www.squirrelmail.org/wiki/MailingListPostingGuidelines List Address: squirrelmail-users@xxxxxxxxxxxxxxxxxxxxx List Archives: http://news.gmane.org/thread.php?group=gmane.mail.squirrelmail.user List Archives: http://sourceforge.net/mailarchive/forum.php?forum_id=2995 List Info: https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
