Free Republic
Browse · Search 		News/Activism
Topics · Post Article

To: Salo
Outlook Web Access is very insecure.

It only uses basic HTML Authentication, which is just lame. Usernames and passwords are sent in clear text, easily readable by a packet sniffer on the network. They need to implement encryption to correct this, which should be fairly easy to do.
24 posted on 12/27/2006 10:10:44 AM PST by KoRn
[ Post Reply | Private Reply | To 1 | View Replies ]

To: KoRn

Now that's just silly. OWA uses SSL. Passwords are sent encrypted in the secure session. DoD's beef with OWA is that it doesn't support two-factor authentication. By Executive Order, all web-based DoD systems have to support CAC cards.


46 posted on 12/27/2006 10:58:40 AM PST by Doohickey (I am not unappeasable. YOU are just too easily appeased.)
[ Post Reply | Private Reply | To 24 | View Replies ]

Free Republic
Browse · Search 		News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson