Major online technology journal Ars Technica wrote an article today about the ease of stealing people’s information over WiFi. They write:
“Even though some sites, such as Gmail, offer secure, SSL-based login pages, things aren’t quite so secure post-login. Unlike many bank web sites that offer a secure browsing experience for the entire duration of the session, most sites dump the user right back out into unsecured territory after logging in, thus exposing their personal data to anyone who wants to get at it. The report provides several examples of session data pulled from directly from Facebook, MySpace, Yahoo Mail, and BlogSpot sessions.”
When we developed YouDeparted.com, we designed its security like the bank web sites the article mentions: you login at a SSL-based login page and you stay on SSL-based pages as long as you are logged in, no exceptions. So the article is a good warning for users of services that do not use secure connections, but YouDeparted users need not worry.
This entry was posted
on Thursday, August 2nd, 2007 at 11:32 am
and is filed under News.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.