Forum Login
Posted: Sun Jan 18, 2015 5:30 pm
I for one would greatly appreciate it if you (Presto) would provide a SECURE (https) login page.
I realize this is just a product support forum so its usefulness to hackers is likely very low (perhaps nonexistent), BUT...
It's the point of the matter! It is extremely poor security practice to be passing login information (which includes one's password) "in the clear" so anyone sniffing the traffic can grab your password and possibly use it to their advantage somehow (such as via social engineering or, worse, directly to access some of your other accounts should you be foolish enough to use the same password for other web sites (which, sadly, a lot of people still foolishly do)).
I also further realize correcting this oversight would likely be an expense to you, since you'd have to purchase a quality SSL certificate and reconfigure your HTTP server (apache?) to start using https instead of http, but again, I personally feel it is something you (and indeed everyone/anyone who runs a support forum!) should do in today's security-conscious privacy-concerned world.
Any chance of this getting fixed? I don't like login pages that aren't secure/encrypted!
Thanks!
Keep up the good work! EDP totally rocks!
I realize this is just a product support forum so its usefulness to hackers is likely very low (perhaps nonexistent), BUT...
It's the point of the matter! It is extremely poor security practice to be passing login information (which includes one's password) "in the clear" so anyone sniffing the traffic can grab your password and possibly use it to their advantage somehow (such as via social engineering or, worse, directly to access some of your other accounts should you be foolish enough to use the same password for other web sites (which, sadly, a lot of people still foolishly do)).
I also further realize correcting this oversight would likely be an expense to you, since you'd have to purchase a quality SSL certificate and reconfigure your HTTP server (apache?) to start using https instead of http, but again, I personally feel it is something you (and indeed everyone/anyone who runs a support forum!) should do in today's security-conscious privacy-concerned world.
Any chance of this getting fixed? I don't like login pages that aren't secure/encrypted!
Thanks!
Keep up the good work! EDP totally rocks!