Comments on: The Good, the bad and the ugly: Wordpress, Scribefire and Wireshark http://www.mckeay.net/2008/03/20/the-good-the-bad-and-the-ugly-wordpress-scribefire-and-wireshark/ The views of one man on security, privacy and anything else that catches his attention Sat, 30 Aug 2008 10:22:27 +0000 http://wordpress.org/?v=abc By: Sebastian http://www.mckeay.net/2008/03/20/the-good-the-bad-and-the-ugly-wordpress-scribefire-and-wireshark/#comment-1500 Sebastian Wed, 26 Mar 2008 03:19:26 +0000 http://www.mckeay.net/2008/03/20/the-good-the-bad-and-the-ugly-wordpress-scribefire-and-wireshark/#comment-1500 I ran into the issue with passwords also. One of the best tools that I have come across (and best of all it's free) is PasswordSafe. It's like ScribeFire, except it's a local program on your machine: http://passwordsafe.sourceforge.net/ I ran into the issue with passwords also. One of the best tools that I have come across (and best of all it’s free) is PasswordSafe. It’s like ScribeFire, except it’s a local program on your machine:
http://passwordsafe.sourceforge.net/

]]> By: Mark Palmer http://www.mckeay.net/2008/03/20/the-good-the-bad-and-the-ugly-wordpress-scribefire-and-wireshark/#comment-1441 Mark Palmer Fri, 21 Mar 2008 16:38:37 +0000 http://www.mckeay.net/2008/03/20/the-good-the-bad-and-the-ugly-wordpress-scribefire-and-wireshark/#comment-1441 Have you experienced the following: 1. Login into secure webmail site (e.g. httpS://example.com) 2. Then auto-magically it drops the secure connection (e.g. http://example.com) My ISP's webmail service does this. That and the amount of ads they've placed onto the webmail interface is really annoying. You can read more about my rant at http://marktpalmer.com I was wondering if an ISP could be liable for any security issues related to having customer email pass through in clear text. I presume ISPs do this just to save a buck (are they really saving on the costs of SSL connections for webmail connections?). Regards, Mark Palmer Have you experienced the following:

1. Login into secure webmail site (e.g. httpS://example.com)
2. Then auto-magically it drops the secure connection (e.g. http://example.com)

My ISP’s webmail service does this. That and the amount of ads they’ve placed onto the webmail interface is really annoying. You can read more about my rant at http://marktpalmer.com

I was wondering if an ISP could be liable for any security issues related to having customer email pass through in clear text. I presume ISPs do this just to save a buck (are they really saving on the costs of SSL connections for webmail connections?).

Regards,
Mark Palmer

]]>