You said, “The eye-grabbing graphic that complains about the insecurity of .mac webmail is technically wrong. While the page is susceptible to a man in the middle attack, this is a pretty rare and difficult attack to pull off and not get caught.”

However your conclusion is wrong. The insecurity of .mac webmail is in fact correct. Technically, yes, it is insecure or at least LESS secure than free offerings from other companies.

The probability of a criminal being caught has no bearing on the technical deficiency nor obvious security vulnerability of any website or computing device.

However, the page is pretty secure. The eye-grabbing graphic that complains about the insecurity of .mac webmail is technically wrong. While the page is susceptible to a man in the middle attack, this is a pretty rare and difficult attack to pull off and not get caught. If you are bringing your own computer onto a hostile network, you should bring Apple Mail rather than use the .mac webmail.

If you are going into a web cafe and using the machine there to check your mail, there are other, much easier ways to get your password. None of which are likely in a respectable place of business.

Yes it should be made more secure, but it’s pretty good. And I am happy to pay my $100 per year for the service; including the webmail feature that I almost never use.

SSL has been cracked. Any really good hacker can even get onto the server the info is stored on and just get your info if they so choose. So basically what you’re going on about has run you right into a wall. Why bother even using the internet for everything. The internet we use was NEVER designed to be secure. There are no security features that were built into the internet and don’t even try to tell me that I’m wrong on that. On that note I must wonder why you have anything online. None of it is really secure. Never will be either. Apple Inc. is one of the companies doing their best to make their customers online experiences as good as possible. That includes the security front. Take a look at any Windows computers and you’ll notice the same flaws you mentioned in Windows. Windows keeps records of this that and the other thing unless you know how to turn that stuff off. Even then if you’re using Norton’s firewall, Windows firewall you’re still not protected.

Take it from someone who’s done the research. It’s plenty secure. I should also note that while you’re ranting and raving about how bad .Mac is… you didn’t use it with the software. WHICH is what it was designed for. Also I bring one final thing to the table. The internet is dead, or to be more correct it’s dying. So this doesn’t really matter. By 2010 they plan to have a new one in place. One WITH built in security features.

Other than than be thankful you live in a country where you don’t get ripped off with everything you buy!

Now… big hug everyone.

As for the security of the login, this tangential tirade has completely destroyed a valid dialogue that is worth having. Yahoo used to have a login box on every page (accessed via http) that submitted to a secure form. It is NOT secure to do so, and they have changed, they now have ONE secure login page that all authentication requests redirect to. You can not post securely from a plain old http page. If you think you can, then you are just like 80% of the web developers out there that don’t understand how this stuff works.

[quote]
I’m saying NOTHING of the sort… .Mac simply DOES not COST $99.95, average is around $69… that is a raw FACT.

You just need to learn how to shop.

ASIN: B0007LW230
Item model number: MA361Z/A

If you don’t understand how the web works, that’s not my fault, I worked and (still do) for Apple and tied of people posting false reports. Lots of people INSIDE apple are wrong on prices, I happen to be not one of them.

Learn a little will you?

-[/quote]

[quote]Maybe they don’t have as many servers as google and yahoo and want to cut down on traffic bandwidth by only using SSL on the username and password part of the page.[/quote]

@Hammer, thanks for at least trying to answer my question and give a reason as to why the page is not secure, although the form may be.

Apple has plenty of bandwith. Seriously, iTunes downloads? Full length movies? Secured login… I don’t think there is a comparison.

I’m guessing Apple isn’t on shared hosting.

So, does any one else have any other ideas as to why Apple would not make the entire page secure to prevent it from being phished?

Everyone knows .Mac is fully secure. (except the sensationalist, low ego’d author) so price became the main error of this article.

[/quote]

This sounds like a proclamation made without a supporting argument and it reads as being a bit zealot-like.

[quote]The price really doesn’t have much to do with how secure it is.[/quote]

Everyone knows .Mac is fully secure. (except the sensationalist, low ego’d author) so price became the main error of this article.

Fix both and everyone is happy!

An updated Title of this Article everyone can agree should be:

Even at $70 for Apple’s .Mac Service, is Surprisingly Secure…

Will suffice.

Please grow up. I used to work for Apple, I know how much the stuff costs, advantages, disadvantages, and selling points of their products.
.[/quote]

I’m saying NOTHING of the sort… .Mac simply DOES not COST $99.95, average is around $69… that is a raw FACT.

You just need to learn how to shop.

ASIN: B0007LW230
Item model number: MA361Z/A

If you don’t understand how the web works, that’s not my fault, I worked and (still do) for Apple and tied of people posting false reports. Lots of people INSIDE apple are wrong on prices, I happen to be not one of them.

Learn a little will you?

-[/quote]

If I walk in to the Apple store how much does .Mac cost me?

Right.

[quote]So then are you saying the full retail price is not what .Mac is sold at? In your example of the 65 dollar price of .Mac it requires you to buy a machine, thus the cost of .Mac is a computer + $65.00, much more than $99.95.

Please grow up. I used to work for Apple, I know how much the stuff costs, advantages, disadvantages, and selling points of their products.
.[/quote]

I’m saying NOTHING of the sort… .Mac simply DOES not COST $99.95, average is around $69… that is a raw FACT.

You just need to learn how to shop.

ASIN: B0007LW230
Item model number: MA361Z/A

If you don’t understand how the web works, that’s not my fault, I worked and (still do) for Apple and tied of people posting false reports. Lots of people INSIDE apple are wrong on prices, I happen to be not one of them.

Learn a little will you?

-