infp - 12:59 pm on Aug 3, 2008 (gmt 0)

This is my last try to undo the immense amount of FUD this thread contains:

SSL will prevent MITM attacks even on insecure wifi connections (that are fully controlled by an attacker) even if DNS is spoofed or whatever, provided that:

- SSL is used as intended (the user must not ignore warning screens).

- Neither your computer nor the remote server has been compromised.

- The remote server has a certificate issued by a public trustworthy certificate authority.

- The user makes sure he or she visits the correct URL (use bookmarks to access your blog admin page) starting with https://

I will not post any other message to this thread, because it obviously leads nowhere and I don't have that much energy to waste.