Good ideas and conversation. No ads, no tracking. Login or Take a Tour!
- The operator of a website that accepts subscriber logins only over unencrypted HTTP pages has taken to Mozilla's Bugzilla bug-reporting service to complain. He is bemoaning how the Firefox browser is warning that the page isn't suitable for the transmission of passwords.
–
user-inactivated · 2804 days ago · link ·
You can get a class 1 cert from StartSSL for free, and then you can use HTTPS without your users getting a browser warning over a self-signed cert. I wouldn't trust a credit card number or something to a site using either, but it's better than nothing if you really don't want to shell out $100 or so.
johnnyFive · 2804 days ago · link ·
I'll just add that the goth club in my town has some great shows, but does not encrypt their order page, expecting people to enter their credit card info in the clear.
–
–
johnnyFive · 2804 days ago · link ·
Oh cool. Any idea where to report that? I didn't see anything on Mastercard's website.