Closed ambiso closed 5 years ago
The user must request the HTTPS version of the site on their own accord and even then many hyperlinks refer back to the insecure version of the site.
This way usernames, emails and passwords are sent in plaintext.
The user must request the HTTPS version of the site on their own accord and even then many hyperlinks refer back to the insecure version of the site.
This way usernames, emails and passwords are sent in plaintext.