This morning, I notice that my Android was showing a certificate error trying to check email on my Cox ISP account. Android wouldn’t display the certificate error or even the certificate of the service I’m connecting to. A manager at work had the same issue but on the iPhone which did allow you to view …
Its nice that my cable and telephone company Cox is fixing a few their security problems, but it would be nice if they’d let people know that the ability to be more secure is available. Back in July 2007 I wrote about Cox adding POP3 over SSL. In November 2008, I wrote about Cox enabling …
Cox has enabled SMTP over SSL and apparently is now allowing authenticated SMTP email from outside the Cox network. Instructions are here. Its a simple matter of changing the outgoing server port to 465 and checking the use SSL box. Additionally you need to enable authentication for SMTP (same credentials as POP3). Even from the …
I was going through my Cox inbox and found Viagra spam with a link to http://doc.google.com/View?id=dfpqm7ft_0tt6xhdd2. Its nothing new that spammers have been taking advantage of Google. Its just kind of annoying to me that this message was sent on October 30th, today is November 10th and the linked Viagra Google doc is still up …
Looks like the shoe is on the other foot. Last week I was chortling that MessageLabs was tar pitting Google in an automatic response to gmail sending out so much spam. Now some of MessageLabs IPs have been blocked by the CBL. Apparently that is rather widely used. I’ve already seen rejections from Cox and …
Continue reading ‘CBL List (partially) Blocks MessageLabs’ »
Last Friday, one of the guys in the department noticed that when he signed into Cox webmail he would access Cox mailboxes belonging to other employees. He was even able to open messages in those accounts. I went back to my office and created a test account. There is an awful lot of potential confidentiality …
My cable company Cox is now using a PIN to authenticate users when they contact support. Their KB article on the subject says this was required by the FCC to prevent pretexting. To make things easy for the customer and for themselves, they print the PIN on the first page of the cable bill. How …
Back in February I repeated Rob Pegoraro’s announcement that SSL for Cox Webmail would be occurring in the first quarter of 2007. In July, Cox enabled POP3 over SSL and indicated that SSL for Webmail was coming soon as well. Cox has finally enabled SSL for Webmail, but it is only protecting the credentials at …
In George Ou’s blog entry titled “Email Security Has been around forever, you just have to turn it on” George asserts “My current DSL provider AT&T like most ISPs supports SSL encryption on POP3 and SMTP and it’s as simple as a checkmark and using ports 995 for POP3 and 465 for SMTP instead of …
Continue reading ‘Things I did not know – Cox Pop over SSL’ »
In his Fast Forward Help File earlier this week in the Washington Post, Rob Pegoraro is asked about the security implications of ISPs not using encryption on their Webmail logins. Rob reports that Cox is planning to offer SSL webmail the first quarter of this year. Rob comments that “The biggest reason to look for …