| Computing.Net: Over 1,000,000 posts about all things technology related! Over 90% answered within 24 hours! Click here to sign up now, it's free! |
When is https// required?
|
Original Message
|
Name: srloren
Date: December 6, 2006 at 12:38:51 Pacific
Subject: When is https// required?OS: Win XP Pro SP2CPU/Ram: Pent 4 3.2 2 Gigs ramModel/Manufacturer: ASUS P5P800 |
Comment: I have noticed that some Bank websites come up with https not http, in the URL prior to you typing in your user name or password. Others show https only after you have typed in this critical data. Does https prevent key loggers from accessing passwords and usernames?
Report Offensive Message For Removal
|
|
Response Number 1
|
Name: jboy
Date: December 6, 2006 at 14:33:55 Pacific
|
Reply: (edit)https A common misconception among credit card users on the Web is that https: fully protects their card number from thieves. In reality, an encrypted connection to the Web server only protects the credit card number in transit between the user's computer and the server itself. It doesn't guarantee that the server itself is secure, or even that it hasn't already been compromised by an attacker.
... as well, a keylogger on a compromised machine logs the actual keystrokes, so it really doesn't matter if you're on a 'secure' webpage or not
I'm not one of those who think Bill Gates is the devil. I simply suspect that if Microsoft ever met up with the devil, it wouldn't need an interpreter
 Report Offensive Follow Up For Removal
|
Post Locked
This post is quite old and has been locked from receiving new replies. Please create a new posting instead.
Go to Security and Virus Forum Home
