Slashdot Mirror

← Back to Stories (view on slashdot.org)

Gmail Moves To HTTPS By Default

Posted by timothy on from the you-mean-I-gotta-log-in-again? dept.

clone53421 writes "Although Gmail has long supported HTTPS as an option, Gmail announced their decision yesterday to switch everyone to HTTPS by default: 'We initially left the choice of using it up to you because there's a downside: https can make your mail slower since encrypted data doesn't travel across the web as quickly as unencrypted data. Over the last few months, we've been researching the security/latency tradeoff and decided that turning https on for everyone was the right thing to do.' I wonder if this has anything to do with the reports of Chinese users having their accounts hacked? 'Only two Gmail accounts appear to have been accessed, and that activity was limited to account information (such as the date the account was created) and subject line, rather than the content of emails themselves,' said David Drummond in that blog update. That does sound like it perhaps could be a result of insecure HTTP traffic being intercepted in transit between the users and Gmail's servers."

2 of 275 comments (clear)

  1. Google just doesn want... by Megaweapon · · Score: 0, Troll

    others sniffing the traffic they want to store for you on their end as to keep it all to themselves.

    --
    I'm sure "SlashdotMedia" will improve on all the wonders that Dice Holdings blessed us all with
  2. Re:Keyloggers by AHuxley · · Score: 0, Troll

    They trusted microsoft and google.
    Today China, soon you.
    What do you think the NSA is doing in your fly over states?
    Do the Soviets have a few extra trade missions?
    Wipe MS from your computer, learn all you can about linux and then meet in person to swap one time pads.

    --
    Domestic spying is now "Benign Information Gathering"