Daily Archives: August 20, 2005

How SSL/TLS is broken, socially

SSL/TLS works pretty well on the technical side, but on the social side, it’s broken, because so many sites (especially small ones) don’t use it, requiring users to send passwords and other private information in the clear. The problem is … Continue reading

Tagged | 6 Comments

SSL/TLS RSS Challenge

[Update: more results] [Update: some results left as comments; and more.] Thanks to everyone who posted comments on my Password-Protected RSS challenge three weeks ago. It turned out that the vast majority of feed readers can handle HTTP basic authentication … Continue reading

Tagged , | 14 Comments