It is not enough that the "conversation" is encrypted. You need to make
sure that you are talking to the "correct" website. SSL also handles this,
by verifying that the site certificate was properly issued.
Hence, if your browser warns of any certificate errors or problems, you
should not continue to enter any secure details (CC number, bank account
logins, etc.). Most especially, don't enter an existing login/password to
a site if the site certificate is not properly validated. The site may be
a "phishing" site and may be collecting logins/passwords for later use
(emptying your bank accounts).
Simon
On Fri, 10 Dec 2010, bill_beecher@flash.net wrote:
> I guess I could say this is TR related as we spend plenty of bucks each year
> via the internet punching in our credit card number, exp date and that
> secret little number on the back for parts and services.
>
> **The main difference between http:// and https:// is and it's all
> about keeping you secure** HTTP stands for Hyper Text Transfer
> Protocol.
>
> The S (big surprise) stands for "Secure".. If you visit a website or
> webpage, and look at the address in the web browser, it
> will likely begin with the following: http:// This means that the
> website is talking to your browser using
> the regular 'unsecure' language. In other words, it is possible for
> someone to "eavesdrop" on your computer's conversation with the
> website. If you fill out a form on the website, someone might see the
> information you send to that site.
>
> This is why you never ever enter your credit card number in an http
> website! But if the web address begins with https:// that
> basically means your computer is talking to the website in a secure
> code that no one can eavesdrop on.
> You understand why this is so important, right?
>
> If a website ever asks you to enter your credit card information, you
> should automatically look to see if the web
> address begins with https:// . Also, you should see the padlock icon on
> your browser.
>
> If it doesn't, You should NEVER enter sensitive
> information....such as a credit card number.
> _______________________________________________
> British-cars@autox.team.net
> Donate: http://www.team.net/donate.html
> Suggested annual donation $11.47
> Archive: http://www.team.net/archive
> Forums: http://www.team.net/forums
> Unsubscribe/Manage:
>http://autox.team.net/mailman/options/british-cars/simon@matthews-family.org.uk
_______________________________________________
British-cars@autox.team.net
Donate: http://www.team.net/donate.html
Suggested annual donation $11.47
Archive: http://www.team.net/archive
Forums: http://www.team.net/forums
|