PDA

View Full Version : POST from my computer to website: secure?



hamstar
28-08-2005, 11:35 PM
Hi guys,

was just wondering, i made a local html file my homepage for FF, and in this I included the form code from mail2web and the asb bank logon page.

I have used them once or twice, but then became scared upon realising this probably isnt safe...

How safe is it? The method used is POST, however I am fairly sure there is no sort of encryption between me and the sites, so anyone packet sniffing them could pick up my details right?

Just thourt I'd check it out before using them anymore... the reason I did it was becos it takes so long to load the sites on dialup... (well the asb one anyway)

Thort it was a good idea at the time....

vinref
29-08-2005, 12:29 AM
Surely the ASB site uses https as soon as it asks for client number and password? It wont work otherwise?

Don't know about mail2web though.

A packet sniffer is only useful if someone has physical access to your PC/network/telephone line or wireless network. Have a look out your window to see if there is a van parked there with a cable leading to your phone junction...

If you use a internet cafe - well you shouldn't really use an internet cafe to do your banking.

hamstar
29-08-2005, 12:30 PM
cant they do a tcp dump on mail2web.com as a host?

and i am basically sending unencrypted details accross the net aren't I?

Is POST even that easy to pick up?