I'm staying at the Marriott, and normally I use a VPN. For some reason the configuration file corrupted and I had to delete then reconfigure the VPN. I forgot to check to send all internet traffic through the VPN. The WiFi network at the Marriott has no encryption. So there I am, logging into my Schwab, ING Direct, TD Ameritrade, Wachovia, Citibank, Chase, and American Express accounts. Plus I send mail and log into AIM/iChat. My question is if I need to change all my passwords after logging into these sites if the sites use SSL when logging in? I think the only one that was configured to not use SSL on log in was iChat. I feel like an idiot for doing this!