You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
It seems that the mapwarper.net website operates over plaintext http:// connections. In particular, it allows users to create accounts (and thereby send passwords) in plaintext. Better would be to force modern browsers to use SSL via an implementation of https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security . Also as a short-term fix, registration emails should use https:// URLs for confirmations (as of this writing they do not).
The text was updated successfully, but these errors were encountered:
It seems that the mapwarper.net website operates over plaintext
http://connections. In particular, it allows users to create accounts (and thereby send passwords) in plaintext. Better would be to force modern browsers to use SSL via an implementation of https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security . Also as a short-term fix, registration emails should usehttps://URLs for confirmations (as of this writing they do not).The text was updated successfully, but these errors were encountered: