Ravikiran on really stupid security policies. I’ll add another: Indiatimes email. This site is popular in India because it’s hosted there and is fast, with a low latency connect. If we’re behind the same HTTP proxy, I can read your email (provided I know your sign-in name and you are not logged out). Considering how many people use this site for personal email at offices (where proxies are common), I don’t think is a good thing.

Update: Actually, if there are any BOFH types at office, they can probably read personal mail already - a well placed packet sniffer can do wonders, thanks to most web sites transmitting passwords essentially in the clear. (If not passwords (Hotmail and Yahoo have https secured logins), then the mail is sent in the clear anyway.) Very few mail services offer POPS, IMAPS or HTTPS access to email — MyRealbox being one, which is why I’m such a big Realbox fan.