Security Basics mailing list archives
RE: newbie question
From: "Tom Crimmins" <seclists () pottcounty com>
Date: Wed, 6 Sep 2006 16:14:33 -0500
Bora Dal wrote:
I think GMail uses SSL (https://....) by default; it certainly supports it. If you can connect directly to Google, that's probably good enough.Gmail does not use SSL in all phases of the your "mail experience". If you take a look, SSL is used just in the initial login phase, sending your credentials with SSL. The rest of the communication takes place without the cover of encryption. In my opinion the safest gmail use is done through enabling POP3 and SMTP with "delete the mail from gmail mailbox after its retrieved option" set. The mail dropped into the local mailbox should be secured, ofcourse thats another story :)
Actually if you connect to https://mail.google.com directly, your entire session will be over ssl not just the log in. If you connect to http://mail.google.com, you will be directed back to the standard http version after login. -- Tom Crimmins Programmer Analyst/DBA Pottawattamie County, Iowa
Attachment:
smime.p7s
Description:
Current thread:
- Re: newbie question, (continued)
- Re: newbie question jm (Sep 08)
- Re: newbie question Colin Copley (Sep 05)
- RE: newbie question Robert D. Holtz - Lists (Sep 06)
- Re: newbie question Muiex (Sep 07)
- Re: newbie question krymson (Sep 06)
- Re: newbie question Matt Davis (Sep 07)
- RE: newbie question Bora Dal (Sep 06)
- Message not available
- Re: newbie question Paul Rochford (Sep 07)
- Re: newbie question Matt Davis (Sep 08)
- Message not available
- Re: newbie question nospam (Sep 07)
- RE: newbie question Tom Crimmins (Sep 07)
- Re: newbie question javier rojas (Sep 08)