tag:blogger.com,1999:blog-16750015.post6467964176697555612..comments2024-01-24T20:01:37.600-05:00Comments on slight paranoia: Thoughts on Microsoft's Hotmail SSL deploymentChristopher Soghoianhttp://www.blogger.com/profile/08950937382104783909noreply@blogger.comBlogger4125tag:blogger.com,1999:blog-16750015.post-69598800558073989622010-11-24T00:53:12.597-05:002010-11-24T00:53:12.597-05:00It is possible to make that automatic in Firefox f...It is possible to make that automatic in Firefox for sites which DO support SSL by using HTTPS EVERYWHERE or an option under NOSCRIPT addons.<br /><br />As well as using HTTPS with web communications, one should also use Secure Sockets Layer when using a mail client like Pegasus Mail or Thunderbird which download all mail rather than browsing it in the cloud. <br /><br />One easy way to do this with any email client is to use the POPfile program. As well as categorising email using baysian methods, it can sit on your machine offering a simple POP interface to your email client while using SSL when communicated with your email server. GMAIL and others support SSL email.<br /><br />Of course, this is all moot when Google chooses to disclose info to any government which asks extralegally.<br /><br />tOMtOM Trottierhttp://Information.Architecture.Abacurial.comnoreply@blogger.comtag:blogger.com,1999:blog-16750015.post-11102604158732025302010-11-14T14:11:20.898-05:002010-11-14T14:11:20.898-05:00It seems to me in many cases unencrypted connectio...It seems to me in many cases unencrypted connections is by default plausibly deniable whereas encrypted connections are very much less plausibly deniable. This is just something to think about when using encryption. Also so far as the not by default it would seem that even with encryption privacy is easily compromised by bad security measures. If someone doesn't know to type in https:// maybe they need to learn more how much can https:// do when data mining bots may be installed on the system or a Trojan in which case https will not protect privacy. I think an informational page about using https would be much more helpful than just enabling it by default to unknowing people.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-16750015.post-39604634347982510632010-11-12T04:56:56.352-05:002010-11-12T04:56:56.352-05:00"Your Windows Live ID can't use HTTPS aut..."Your Windows Live ID can't use HTTPS automatically because this feature is not available for your account type." -- Some users can't opt-in if they want to.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-16750015.post-11753934984837980142010-11-11T12:27:50.634-05:002010-11-11T12:27:50.634-05:00I wish my mom had the time to read this.
I still ...I wish my mom had the time to read this.<br /><br />I still love you thoughAnonymousnoreply@blogger.com