dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
364
share rss forum feed

l0cal32

join:2012-05-30
Stoney Creek, ON

encryption

just curious if something is done?
will just sniffing on the cable network reveal my passwords?
should I go third party and use ie lastpass


chall2k56

join:2007-10-03
Edmonton, AB
Reviews:
·ELECTRONICBOX
·Acanac
·WIND Mobile

if your passwords are sent over http, (with no s at the end) then yes its possible (some forums and blogs)

if you see https (and you verify the SSL certificate), then its very hard (banks, merchants, gmail, etc...)

as with all passwords, keep them hard to guess, avoid dictionary words, use different passwords for different accounts, and change them often



intrst

@atrianetworks.net

So you're saying there's no encryption on the cable network? If I access a site and put my password in on a site without an SSL certificate/any encryption, it's available to any sniffers on the cable network within my node coverage?

Surely there must be some encryption to prevent this kind of sniffing. Wikipedia lists a few options for DOCSIS encryption. Is Rogers not implementing anything?



rocca
Start.ca
Premium
join:2008-11-16
London, ON
kudos:23

Replied in your new thread.


l0cal32

join:2012-05-30
Stoney Creek, ON

thank you