| [Email/WebMail] webmail not secure?!?!?!?! Just noticed using webmail, that the site is not secure??? How can that be?
I use FF (12.0) and the site identity button is blank. I use a padlock extension and the padlock is open. Here's what FF says about the security:
Is this something new? I can't say I've ever looked before, but it just jumped out at me now. |
|
 DaSneaky1Done wall to block them allPremium,MVM
join:2001-03-29
The Lou | The page forces you to log in first, and that page is secure |
|
1 edit | said by DaSneaky1D:The page forces you to log in first, and that page is secure
I was logged in. I was reading mail:
|
|
|
|
Reviews:
 ·ooma
 ·Virgin Mobile Br..
 ·Charter
 ·HughesNet Satell..
·Millenicom
| reply to gardengal
He meant you are on a secure site for id and password authentication......It shows the https and padlock.
Once you're actually past the authentication screen, and actually into your mail, you're just on a regular http website..
Its ALWAYS been this way. If you feel unsecure, get an external email program to send and receive like WINDOWS MAIL (in win7).. |
|
| I see. That just seems so wrong. Of course I have a real mail client at home, but at work or other portable locations, web email can be useful. But knowing that the email itself is not encrypted really does bug me. (even though I've been using it for 15 years - LOL!)
Guess that's one more reason to wean myself off the charter.net email address and embrace gmail even more. Is that a variant of "cord-cutting"?  |
|
| and besides lack of encryption, the fact that the site address was not even verifiable is also somewhat bothersome. |
|
Reviews:
·ooma
·Virgin Mobile Br..
·Charter
·HughesNet Satell..
·Millenicom
| If its such an issue and bothers you, stop using it.
said by gardengal:and besides lack of encryption, the fact that the site address was not even verifiable is also somewhat bothersome.
|
|
siech0
join:2001-03-20
Warrensburg, MO | reply to compuguybna
Just because it's always been that way, doesn't mean it should be that way. People don't always have the convenience of using an external email program. As an example, If I want to check my email from an airport or something, I'm now transmitting data unsecured and that doesn't sit to well with me.
I agree with gardengal that it should be secure even passed the log-in. |
|
| reply to gardengal
Use Gmail or Hotmail to retrieve your mail from the Charter account and read it using that interface. They support HTTPS, and it will be encrypted so your browsing via public unencrypted WIFI will be safer. |
|
| said by desarollo:Use Gmail or Hotmail to retrieve your mail from the Charter account and read it using that interface.
Not a bad idea for a workaround but I do have other gmail accounts already and it already gets confusing (for me) to manage multiple accounts. I prefer to keep everything separate. It would just be nice if charter.net were secure as-is.
In a few months I expect to no longer have charter as ISP (if/when I sell my house), so I will just have to be aware until then and make sure to not disparage employer while using it at work, just in case. |
|
| reply to gardengal
Install ThunderBird, it's simular to the old Netscape Communicator EMail program.
»www.getthunderbird.com
Use the following server settings (Thunderbird should automatically determine these values)
and you'll be using SSL.
--
CompTIA Network+ Certified |
|
| thanks, but I need portable web mail at work etc. Don't want to (can't) install any clients. |
|
| said by gardengal:thanks, but I need portable web mail at work etc. Don't want to (can't) install any clients. I would just use a smart phone and check it from that.
Even if you use HTTPS/SSL Net Admin's can still see the URL's you visit.
--
CompTIA Network+ Certified |
|
| said by TheTechGuru:I would just use a smart phone and check it from that.
I've been meaning to look up how to setup my smartphone for my charter isp mail, and have been putting it off. Thanks to your posting those settings above, my smartphone is now charter-friendly. (I used a non-gmail client just to keep it all separate and straight in my head. k-9 mail seems to do the trick) Thanks so much!
I even setup auto-bcc from the phone to a secondary account so I can create an Outlook rule to grab externally sent mail and put it into a Sent Folder on my PC. One of my pet peeves with add'l mail clients is having multiple sent folders on different platforms and wondering where things are. Took the time. Solved that problem.
said by TheTechGuru:Even if you use HTTPS/SSL Net Admin's can still see the URL's you visit.
Not worried about them so much (altho ya never know for sure). Teeny-weeny company, no real IT dept just want to be protected from general external evil hackery. |
|
