I see this has been suggested before, but it seems so common sense and simple to implement.
This page:
should be https.
Why?
You ask people for admin access and logins to people's servers.
Yes it is encrypted in your servers, but the passwords are sent in that page in plain text! It should be obvious that this method is not secure at all.
This page:
should be https.
Why?
You ask people for admin access and logins to people's servers.
Yes it is encrypted in your servers, but the passwords are sent in that page in plain text! It should be obvious that this method is not secure at all.
Comment