Star Cutting the Cat 5 Cord? Not So Fast!
Linked by Thom Holwerda on Thu 19th Jun 2008 20:23 UTC, submitted by Mark Wielaard
Internet & Networking While the history of wireless computer networks dates back to the 1970 with the University of Hawaii's ALOHAnet (I wish we retained that name instead of 802.11x), it has only been during the past, say, 10 years that the technology started to make serious inroads into the consumer market - your home. The latest and greatest variant is 802.11n, and while promoted as the best thing since sliced bread, Frank Ohlhorst has his reservations, and debunks 5 myths concerning 802.11n.
E-mail Print r 0   · Read More · 53 Comment(s) http://osne.ws/fci
Thread beginning with comment 319346
To view parent comment, click here.
To read all comments associated with this story, please click here.
kaiwai
Member since:
2005-07-06

Even the uname/passwd login prompt on this, a technical, website is run over http. This is the second site this week I've made mention of it about. If that's the example set by two technical websites; there's a whole lot of non-tech websites out there spewing user names and how many of those make site specific accounts?

MSN, Yahoo, ICQ and the other chat clients all send uname/passwd in plain text also even if you use "off the record" or some other enryption for the chat. In the case of the first two, they use your email account for authentication so you can't even use a protocol specific password; may as well just hang a sign out from saying "this is my email, please hijack my account and use it for whatever you want".

Damn me and my ethics. I'd have been rich by now if I didn't develop those pesky things early in life. ;)


I agree. But I think that is worse is the fact that many people here will also use the same password for this website as they do for their email, internet banking and numerous other facilities. Its shocking that this website doesn't do logging in via ssl.

Reply Parent Bookmark Score: 2

jabbotts Member since:
2007-09-06

It gives me the willies every time I have to use a plaintext login form but some sites are worth it for the limited risk presented. As you add though, most users don't have a different uname/passwd for each login. Once you get there site account or MSN Chat off the wire you've got the keys too the kingdom.

In terms of websites, I think cost is a big part. A self signed cert is not going to be trusted by people who don't know the website well (or us security geeks for that matter). A CA signed cert means involving a third party for a strictly two party discussion along with the absorbitant cost charged by most CA for the privellege of useing what should have replaced http long ago.

Reply Parent Bookmark Score: 2