Password encryption itself does not encrypt all the data after you log in, unless you use https:// link after you login to your private online account, instead of http:///
In the past, I can use a tool to sniff all the facebook cookies in a wifi hotspot, and assume a session of any facebook whose owner is nearby, because even though facebook is password protected, all the traffic after login is not encrypted and only identification / protection is a cookie string. I think facebook fixed that long time ago.
Therefore, if you login to your private account, pay attention subsequent URL is https://my.acmebank.com/, not http://my.acmebank.com/ Because the former sends open, non-encrypted data through your company's network, and the company can look at anything they chose going through their network.
The lesson is, use your private account on your smart phone.
Every data packet going through company network is fair game
所有跟帖:
• 如果你想做FBI或者hijack,辦法當然很多 -慧惠- ♀ (203 bytes) () 09/19/2014 postreply 12:02:25
• 任何經過公司網絡的數據,公司都有權利看。公司能不能看,該不該看,想不想看,愛不愛看。。。是公司自己的事情,你的數據已經不是你的了 -lexm5- ♂ (0 bytes) () 09/19/2014 postreply 12:53:27
• 可是你給的link也說的不可以的。。。 -慧惠- ♀ (680 bytes) () 09/19/2014 postreply 13:31:53
• 不要吵了,如果用gmail,Google都能看的。他們總裁講了,除了他和G的CEO,大家都沒隱私。 -N.- ♀ (0 bytes) () 09/19/2014 postreply 17:00:44
• gmail不是鐵板一塊 -lexm5- ♂ (384 bytes) () 09/19/2014 postreply 19:35:51