MOREnet's e-mail warning.

Home    Contact Us

"We have been made aware of new Web based services that will check any type of e-mail by typing in a user ID and password. These mail services are not like Hotmail or Yahoo; the new services use an already existing mail account. The site may be hard to beat for convenience, but poses a real risk to network security. To use these services, the user simply enters their e-mail address and password into a form. The Web server then authenticates to the user's home network, and copies all mail on that server to the Web for reading. The hazard is the user has just provided their network password to this unknown Web site. Even should such a Web site be run by a reputable company, there is a strong analogy to the use of a credit card and its carbon copies. The user has essentially provided access to their mail account to the Web server, the mail server and the individuals who maintain it. Many e-mail passwords do far more than simply provide access to e-mail; they authenticate to a network. Even just using the password for e-mail, someone could read, delete and forge email. There are mail alternatives that do not require network compromise. MOREnet account holders who have used such a mail service are strongly advised to immediately change their network passwords. Holders of customer accounts who have used such services are also advised to change passwords and not use such a service again."

Please contact Show-Me Net's Help Desk (573/204-1097, 9:00AM-5:30PM  M-F and 9:00AM-1:00PM  Saturday) with any questions on changing your password. If you have questions or concerns about this or other network security issues, please feel free to e-mail Helpdesk@ShowMe.Net

This page was last updated April 24, 2003.

http://www.showme.net/morenet.htm