File this one under "Do They Even Get Security".

I was cleaning out my bookmarks just now and decided to see if Shaw had finally closed down my old email account as I did close/transfer my account to a friend when I moved to the 'Horse.

They haven't, but the even more fascinating thing is the total lack of security in their webmail login.

Try this :

• Go to this link
• Enter text into the user name and password fields
• Watch your user name and password flash in the URL bar, unencrypted, unencoded, bare to the world
• Pick up your jaw

Disclaimer : this was done on a slow iBook running OS X 10.3 with Safari

Now, if this were a small, just started, no-clue ISP I could understand the error. But coming from Shaw this is inexcusable. There are many reasons that I never used their @shaw.ca email address for anything but this just reinforces my clear thinking.