Slashdot Mirror

← Back to Stories (view on slashdot.org)

Gmail Moves To HTTPS By Default

Posted by timothy on from the you-mean-I-gotta-log-in-again? dept.

clone53421 writes "Although Gmail has long supported HTTPS as an option, Gmail announced their decision yesterday to switch everyone to HTTPS by default: 'We initially left the choice of using it up to you because there's a downside: https can make your mail slower since encrypted data doesn't travel across the web as quickly as unencrypted data. Over the last few months, we've been researching the security/latency tradeoff and decided that turning https on for everyone was the right thing to do.' I wonder if this has anything to do with the reports of Chinese users having their accounts hacked? 'Only two Gmail accounts appear to have been accessed, and that activity was limited to account information (such as the date the account was created) and subject line, rather than the content of emails themselves,' said David Drummond in that blog update. That does sound like it perhaps could be a result of insecure HTTP traffic being intercepted in transit between the users and Gmail's servers."

2 of 275 comments (clear)

  1. Slightly off-topic... by mustafap · · Score: 0, Offtopic

    why is it that if I have an account like

    bob.alice@gmail.com

    That mail addressed to

    bobalice@gmail.com

    gets delivered to bob.alice@gmail.com

    --
    Open Source Drum Kit, LPLC deve board - mjhdesigns.com
  2. Re:iGoogle support? by Hurricane78 · · Score: 0, Offtopic

    I also noticed that normal comment trolling now went down, while moderation trolling rose strongly. But I still wonder if someone could trick the system, or if the mod points will soon be burned away...

    --
    Any sufficiently advanced intelligence is indistinguishable from stupidity.