BLU Discuss list archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Discuss] Reusing Passwords on Different Sites Should be OK
- Subject: [Discuss] Reusing Passwords on Different Sites Should be OK
- From: blu at nedharvey.com (Edward Ned Harvey (blu))
- Date: Fri, 18 Sep 2015 11:17:17 +0000
- In-reply-to: <55FB23FE.3080909@mattgillen.net>
- References: <BLUPR04MB3699329CB5E010185E50399DC5A0@BLUPR04MB369.namprd04.prod.outlook.com> <55FB23FE.3080909@mattgillen.net>
> From: Discuss [mailto:discuss-bounces+blu=nedharvey.com at blu.org] On > Behalf Of Matthew Gillen > > just because a malicious employee could run > wireshark on the production boxes doesn't make me forfeit my expectation > of privacy. We all know that we shouldn't login to things over http:// and we've all been trained to use https:// every time. Because random employees of the ISP and other networks could use wireshark, we know we have no reasonable expectation of privacy over http:// The world needs to know, the same problem is still true over https, but instead of thousands of employees operating the routers of the internet, it's thousands of employees operating the load balancers and web servers at google, twitter, facebook, akamai, etc.
- References:
- [Discuss] Reusing Passwords on Different Sites Should be OK
- From: blu at nedharvey.com (Edward Ned Harvey (blu))
- [Discuss] Reusing Passwords on Different Sites Should be OK
- From: me at mattgillen.net (Matthew Gillen)
- [Discuss] Reusing Passwords on Different Sites Should be OK
- Prev by Date: [Discuss] Reusing Passwords on Different Sites Should be OK
- Next by Date: [Discuss] Reusing Passwords on Different Sites Should be OK
- Previous by thread: [Discuss] Reusing Passwords on Different Sites Should be OK
- Next by thread: [Discuss] Reusing Passwords on Different Sites Should be OK
- Index(es):