Comments on: Fixing a little VPN annoyance http://selfamusementpark.com/blog/2008/11/17/fixing-a-little-vpn-annoyance/ I have nothing interesting to say. Don't believe me? Read this: Sun, 04 Jul 2010 19:02:30 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Eliot http://selfamusementpark.com/blog/2008/11/17/fixing-a-little-vpn-annoyance/comment-page-1/#comment-5887 Eliot Wed, 27 May 2009 19:10:30 +0000 http://selfamusementpark.com/blog/?p=75#comment-5887 This is interesting, but as to "seeing passwords I’m sending to badly-secured web sites", isn't that a problem using HTTP (rather than HTTPS) from anywhere? I was under the impression that any one of the computers involved in the relay between you and the website could be sniffing your traffic, and that some of these relays publish logs... Is that not the case? Or if it is, would it be mitigated by using a VPN/private DNS server? As far as I know you'd still have to send your password in cleartext over who-knows-how-many relays. (By the way, I'm curious to know why eliot.com redirects here.) This is interesting, but as to “seeing passwords I’m sending to badly-secured web sites”, isn’t that a problem using HTTP (rather than HTTPS) from anywhere? I was under the impression that any one of the computers involved in the relay between you and the website could be sniffing your traffic, and that some of these relays publish logs…
Is that not the case? Or if it is, would it be mitigated by using a VPN/private DNS server? As far as I know you’d still have to send your password in cleartext over who-knows-how-many relays.

(By the way, I’m curious to know why eliot.com redirects here.)

]]>