[DM-MUG] GMail hack, ref security issues

[Ray Bowler]

I have just been exploring gmail about this. If you go to gmail.com  
there is a gmail blog and a section on security which explains this  
and how to change your settings. I you want to implement it enter your  
account and under settings > general check "always use https". as the  
article says this could slow your gmail down a little.

On Sep 2, 2008, at Sep 2, 20084:18 PM, Victoria L. Herring wrote:

>         http://it.slashdot.org/article.pl?sid=08/08/19/1433206
>
> "A tool that automatically steals IDs of non-encrypted sessions and  
> breaks into Google Mail accounts has been presented at the Defcon  
> hackers' conference in Las Vegas. Last week, Google introduced a new  
> feature in Gmail that allows users to permanently switch on SSL and  
> use it for every action involving Gmail, not just authentication.  
> Users who did not turn it on now have a serious reason to do so, as  
> Mike Perry, the reverse engineer from San Francisco who developed  
> the tool, is planning to release it in two weeks."
> -- 
> Victoria L. Herring, Attorney in Des Moines, Iowa -  Civil rights,   
> Discrimination & Employment Law, http://www.herringlaw.com.  Ph.  
> 515/255-4475;  iChat AV:  victoriaherring at mac.com;  Skype:  vlherring.
> _______________________________________________
> DMMUG mailing list
> Use this Address to send mail to the list:
> DMMUG at dmmug.org
> Use this page to modify subscription options:
> http://cialug.org/mailman/listinfo/dmmug

Ray Bowler

rbowler.home.mchsi.com