Security Basics mailing list archives
Re: newbie question
From: "sami seclist" <sg.seclists () gmail com>
Date: Tue, 3 Oct 2006 08:06:01 +0100
But the use of SSL proxies can be detected, it triggers at the user's interface a window warning him that the certificate isn't correct. Am I right? A question then comes to my mind: Are they able to sniff an https session without the user being warned ? 2006/9/5, David Gillett <gillettdavid () fhda edu>:
I think GMail uses SSL (https://....) by default; it certainly supports it. If you can connect directly to Google, that's probably good enough. However, more and more enterprises -- and some countries! -- are installing firewalls that are SSL proxies. If this includes you, then SSL traffic is decrypted (and potentially read...) and re-encrypted at the proxy. You can probably avoid that by using a VPN, but to do that, you need access to a VPN server out beyond the perimeter.... David Gillett > -----Original Message----- > From: javier rojas [mailto:javier.rojasr () gmail com] > Sent: Friday, September 01, 2006 2:00 PM > To: security-basics () securityfocus com > Subject: newbie question > > hello folks, > > this is my first message to the list and i would like to > start with some newbie questions... > > wel, i live in a contry that has not a good respect for > privacy, i would like to know how can i keep my mail in gmail > from been snooped? > > can anyone just give me a link or a simple steps guide? > > i (and some friends) would really apreciate it. > > -- > Ciao, Javier > linux counter #393724 > GPG Key Fingerprint = 46B76CFEDB0161089D9ECB22FEFDE7EBA8C2007E > > -------------------------------------------------------------- > ------------- > This list is sponsored by: Norwich University > > EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE > The NSA has designated Norwich University a center of > Academic Excellence in Information Security. Our program > offers unparalleled Infosec management education and the case > study affords you unmatched consulting experience. > Using interactive e-Learning technology, you can earn this > esteemed degree, without disrupting your career or home life. > > http://www.msia.norwich.edu/secfocus > -------------------------------------------------------------- > ------------- > --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
--------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINEThe NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- Re: newbie question sami seclist (Oct 03)