Email password security

  • Thread starter Thread starter Sgt Owens
  • Start date Start date
S

Sgt Owens

A recent thread got me interested in packet sniffers so I downloaded
Ethereal and was shocked at what I saw! For example, when retrieving email
using Outlook Express the email address and passwords are visible to anyone
within range who happens to be monitoring the connection!

Then I captured packets from my browser and again saw how much is available
to someone with the desire to eavesdrop. Luckily my bank's website appeared
secure but this whole experience has been unsettling and I really can't be
sure what's safe and what's not. I'm wondering if I should avoid using a
public WiFi connection altogether because of the obvious risks. At the very
least I would like to add some encryption security to email retrieval either
through Outlook Express or by using another email client. Any ideas?
Thanks.
 
Sgt said:
A recent thread got me interested in packet sniffers so I downloaded
Ethereal and was shocked at what I saw! For example, when retrieving
email using Outlook Express the email address and passwords are
visible to anyone within range who happens to be monitoring the
connection!
Then I captured packets from my browser and again saw how much is
available to someone with the desire to eavesdrop. Luckily my bank's
website appeared secure but this whole experience has been unsettling
and I really can't be sure what's safe and what's not. I'm wondering
if I should avoid using a public WiFi connection altogether because
of the obvious risks. At the very least I would like to add some
encryption security to email retrieval either through Outlook Express
or by using another email client. Any ideas?
Click to expand...

SSL encryption. Check if your e-mail provider supports POP3 over SSL (POP3S)
and/or IMAP over SSL (IMAPS). I am not using OE for mail, but under your
account settings there should be a setting for using SSL instead of normal
logon and transfers. Just turn this on and see if you can still receive
mail. If you don't, then your provider does not support SSL. I'd consider
changing to someone who does.
 
A recent thread got me interested in packet sniffers so I downloaded
Ethereal and was shocked at what I saw! For example, when retrieving email
using Outlook Express the email address and passwords are visible to anyone
within range who happens to be monitoring the connection!

Then I captured packets from my browser and again saw how much is available
to someone with the desire to eavesdrop. Luckily my bank's website appeared
secure but this whole experience has been unsettling and I really can't be
sure what's safe and what's not. I'm wondering if I should avoid using a
public WiFi connection altogether because of the obvious risks. At the very
least I would like to add some encryption security to email retrieval either
through Outlook Express or by using another email client. Any ideas?
Thanks.
Click to expand...
If you are worried about eavesdropping then you should not be using
WiFi at all.
 
Back
Top