From the start Gmail supported https connections which insures a secure, encrypted connection to Gmail’s server so that someone with access to the network you’re using couldn’t eavesdrop on your connection and capture the mail you’re reading. However, Google doesn’t force all users to use the https and allows people to stay connected to Gmail over the unsecured http protocol.

Gmail now offers a setting in the Settings to force https connections so your mail will be more secure. Look in the settings for this:

If you don’t see the option in Gmail and Google Apps today, check back every day until you do. They’re rolling out the feature to all users over the next few weeks. In the meantime make sure you’re only going to Gmail using https.

One downside to always using https is that it slows down your connection to Gmail a bit as everything must be encrypted and unencrypted when it gets to your computer.