The Voice of the DBA Low Hanging Fruit

MEVIOtoday

Oct 25, 2009 Low Hanging Fruit

I saw an open letter to Google recently that caught my eye. Someone asked if HTTPS, the secure version of HTTP, could be enabled by default for their applications like Gmail, Calendar, etc. There's not real reason not to use HTTPS, especially as most computers these days have plenty of processing power to handle the encryption/decryption and all browsers support it. I've never felt that it was easy to snoop on traffic in general, but why take the chance? Why not just encrypt communications as https? I know some companies don't allow it, but that's silly. Why not ensure secure communications?

Read the rest of Low Hanging Fruit at SQLServerCentral