To: Salo
Outlook Web Access is very insecure.
It only uses basic HTML Authentication, which is just lame. Usernames and passwords are sent in clear text, easily readable by a packet sniffer on the network. They need to implement encryption to correct this, which should be fairly easy to do.
24 posted on
12/27/2006 10:10:44 AM PST by
KoRn
To: KoRn
Now that's just silly. OWA uses SSL. Passwords are sent encrypted in the secure session. DoD's beef with OWA is that it doesn't support two-factor authentication. By Executive Order, all web-based DoD systems have to support CAC cards.
46 posted on
12/27/2006 10:58:40 AM PST by
Doohickey
(I am not unappeasable. YOU are just too easily appeased.)
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson