M
Ming
In the Outlook 2003, there is a serious security loophole.
In the Free/Busy Option, we can publish our information onto a FTP server.
However, we have to specify the FTP location in the following format:
ftp://someone
[email protected]/....
Here, we have to type the password in the textbox in plain text. This is
very dangerous!! Anyone who are behind us, or who can access my PC, may
easily get my password.
Instead, I think that the Outlook should have a separate textbox that allow
user to store their password (but should be displayed as ******). Also, if
the user do not want to store their password, the Outlook should prompt for
the password everytime. Also, the password should also be further encrypted
before storing in the local machine.
Furthermore, I believe there are many similar loopholes inside WindowXP or
Office2003. All of them should be fixed in order to provide a secure product.
----------------
This post is a suggestion for Microsoft, and Microsoft responds to the
suggestions with the most votes. To vote for this suggestion, click the "I
Agree" button in the message pane. If you do not see the button, follow this
link to open the suggestion in the Microsoft Web-based Newsreader and then
click "I Agree" in the message pane.
http://www.microsoft.com/office/com...fcc2b&dg=microsoft.public.outlook.calendaring
In the Free/Busy Option, we can publish our information onto a FTP server.
However, we have to specify the FTP location in the following format:
ftp://someone
[email protected]/....Here, we have to type the password in the textbox in plain text. This is
very dangerous!! Anyone who are behind us, or who can access my PC, may
easily get my password.
Instead, I think that the Outlook should have a separate textbox that allow
user to store their password (but should be displayed as ******). Also, if
the user do not want to store their password, the Outlook should prompt for
the password everytime. Also, the password should also be further encrypted
before storing in the local machine.
Furthermore, I believe there are many similar loopholes inside WindowXP or
Office2003. All of them should be fixed in order to provide a secure product.
----------------
This post is a suggestion for Microsoft, and Microsoft responds to the
suggestions with the most votes. To vote for this suggestion, click the "I
Agree" button in the message pane. If you do not see the button, follow this
link to open the suggestion in the Microsoft Web-based Newsreader and then
click "I Agree" in the message pane.
http://www.microsoft.com/office/com...fcc2b&dg=microsoft.public.outlook.calendaring