Quote:
Originally Posted by Toadeh
Having never ordered off Schumacher I can't 100% comment, but when you go through the process isn't there an SSL cert on the site?
If so, its either a key logger on your machine, or someone has got the details from the Schumacher DB (Very unlikely). I would go with petrol station over anything else
|
Having an SSL cert means nothing, unless it's a trusted cert. Plus you can have a man in the middle attack. Aka when have a SSL proxy server that blows SSL apart to inspect it, put something like wireshark in there and you can see the data. We actively block self certs at work
I blocked a site the other week as when we looked at the traffic all the credential information was going out in clear text! Eeek
The other thing that I have arguments with people over - there is no such thing as secure email..