View Issue Details

IDProjectCategoryView StatusLast Update
0000652Main CAcert Websitewebsite contentpublic2008-11-16 16:37
Reportermnemoc Assigned To 
Status newResolutionopen 
Summary0000652: login page over http doesn't post to https
DescriptionIf one is stupid enough to change https to http in the login page <>, the <form /> still uses just "index.php" to post, so the info goes plain.

Fortunelly one gets redirected to <>, but the auth was plain, and adsense code (No problem for me, I do trust Google) got injected on the same page the user uses to type his data.
TagsNo tags attached.
Reviewed by
Test Instructions


There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2008-11-16 16:37 mnemoc New Issue