[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Facebook insecure by design

Subject: Facebook insecure by design
From: jeroen at unfix.org (Jeroen Massar)
Date: Sun, 23 Oct 2011 20:11:47 +0200
In-reply-to: <CAK4no07G3hTKA5u+bGiKrL2AW94L-tf8o7ac2tygu+GvLKqiog@mail.gmail.com>
References: <[email protected]> <[email protected]> <[email protected]> <CAAAwwbVT7ONNNc4U=UQ3++2GvFhs_ZLApMKs8+paOjzTzps7Og@mail.gmail.com> <[email protected]> <[email protected]> <093055FBC670440881925307C4117BF2@digitpc> <CACq4OBu2-JKUjbTQYxWkd5A6gjt9MrJU7ULQw0WOVrwRATdyPw@mail.gmail.com> <CAK4no07G3hTKA5u+bGiKrL2AW94L-tf8o7ac2tygu+GvLKqiog@mail.gmail.com>

[hmmm this subject is not really ops now is it...]

On 2011-10-23 19:43 , steve pirk [egrep] wrote:
> Just about everything on Google pages is https these days, even search if
> you enable it.

(or just use https://encrypted.google.com which is available for quite
some time already)

> If anybody on this thread uses gmail com a you really ought to take a look
> at google plus. Compare the way user privacy is the primary objective,
> versus the share everything by default of facebook.

Since when is encrypting a transport (in this case using TLS/SSL) 'user
privacy' ?

The only thing it is protecting is intermediate networks sniffing or
even modifying the traffic and more importantly for the company who gets
all your private information: their revenue stream when they sell that data.

And really, giving all your private emails to a company that explicitly
reads them (even if it is 'automated') to advertise to you and then
mentioning 'user privacy' is just ridiculous ;)

Greets,
 Jeroen

Follow-Ups:
- Facebook insecure by design
  - From: jra at baylink.com (Jay Ashworth)

References:
- Facebook insecure by design
  - From: mike at mtcc.com (Michael Thomas)
- Facebook insecure by design
  - From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
- Facebook insecure by design
  - From: mysidia at gmail.com (Jimmy Hess)
- Facebook insecure by design
  - From: joelja at bogus.com (Joel jaeggli)
- Facebook insecure by design
  - From: joelja at bogus.com (Joel jaeggli)
- Facebook insecure by design
  - From: bill.pilloud at gmail.com (Bill.Pilloud)
- Facebook insecure by design
  - From: leothelion.murtaza at gmail.com (Murtaza)
- Facebook insecure by design
  - From: steve at pirk.com (steve pirk [egrep])

Prev by Date: Facebook insecure by design
Next by Date: Facebook insecure by design
Previous by thread: Facebook insecure by design
Next by thread: Facebook insecure by design
Index(es):
- Date
- Thread