[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Gmail/SSL

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Gmail/SSL
From: "anon ymous" <a.y.main.contact@xxxxxxxxxxxxxx>
Date: Tue, 11 Mar 2008 07:44:35 +0100
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Tue, 11 Mar 2008 02:44:41 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=OfDvk7ktUPbo2nSiy8oXCAOQrv5ZyQ6FTNnbhV62LsQ=; b=fw3zSdC4ooY3sS6xzHq/uPmDcC52l/KUm2gsvM/TOxejILy/z47hdmS3m4ajVETp8QXWLcY+o/bwLAveq8zU/iz62ZpAbwf93dW6BeZrkb/J7aSPS65NeyeUZVs1P8MhBdL8IhdrkTVO2WvoX8NYUq7y3+fCanN3AzKmTDuqidI=
Domainkey-signature: a=rsa-sha1; c=nofws; d=googlemail.com; s=gamma; h=message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=sAq8evCBJuUjMvNxDTbc3JbauluZWIjWyrFE8XbDtBpBqtGVfCtvs5zwZQZS9g6uqFxiXH4qPVrQDkFCaNOvcvkSNVrA4nZEzN86S/i1IoihFPojnYaC6Nr9Z5R6SCdSWHC4YZk9MuuwVEmd0skx5cmqI/BbV7WVGf0ziw1vBPY=
In-reply-to: <a45400c30803092237x6ab69804j89aedc22fdb20d3e@xxxxxxxxxxxxxx>
References: <1da45f2a0803091723i563a98a3tf4aecb00fcbf20cc@xxxxxxxxxxxxxx> <a46699dc0803091805m2d8a1851l9edff27e994ba564@xxxxxxxxxxxxxx> <a45400c30803092237x6ab69804j89aedc22fdb20d3e@xxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

On 3/10/08, defcon <defconoii@xxxxxxxxx> wrote:
> whatever you do, while in gmail dont exit gmail without logging off,
> if you simply go to any non-ssl google site your cookie will be
> exposed ፡(

No, cookies for SSL and non-SSL -sites are different in firefox.
Check with any forum. While you are logged in when using https://
you are a guest when using http:// .

References:
- Gmail/SSL
  - From: Jonathan Addington
- Re: Gmail/SSL
  - From: John Kimble
- Re: Gmail/SSL
  - From: defcon

Prev by Author: Re: A couple of annoying bugs in the latest RC
Next by Author: Re: Excluding domains
Previous by thread: Re: Gmail/SSL
Next by thread: Re: consult on Tor(from a student)
Index(es):
- Author
- Thread