Welcome Guest. Please Login or Register  


You are here: Index > Softaculous Auto Installer > Bugs > Topic : Softaculous and Webuzo don't force HTTPS to prevent NSA and (other) MITM interceptions



Threaded Mode | Print  

 Softaculous and Webuzo don't force HTTPS to prevent NSA and (other) MITM interceptions (3 Replies, Read 7949 times)
portatexas
Group: Member
Post Group: Newbie
Posts: 2
Status:
Softaculous and Webuzo don't force HTTPS to prevent NSA and (other) MITM interceptions. This is a security related bug. HTTPS should be the default in order to prevent agencies such as the NSA, the chinese government or any type of hacker to intercept the login credentials and own the entire server through Softaculous software.
IP: --   

Softaculous and Webuzo don't force HTTPS to prevent NSA and (other) MITM interceptions
portatexas
Group: Member
Post Group: Newbie
Posts: 2
Status:
To make this work, there should be an easy way to see the difference between the real SSL certificate and a forged one as well.
IP: --   

Softaculous and Webuzo don't force HTTPS to prevent NSA and (other) MITM interceptions
Brijesh
Group: Softaculous Team
Post Group: Super Member
Posts: 4009
Status:
Hi,

Sorry for the delay.

We have made the required changes so that the login is processed via SSL. We will be updating the site within a day or two.

-----------------------
SitePad Website Builder
Follow us on Twitter
IP: --   

Softaculous and Webuzo don't force HTTPS to prevent NSA and (other) MITM interceptions
Brijesh
Group: Softaculous Team
Post Group: Super Member
Posts: 4009
Status:
Hi,

We have made the required changes and all the logins will now be processed with SSL.

-----------------------
SitePad Website Builder
Follow us on Twitter
IP: --   

« Previous    Next »

Threaded Mode | Print  



Jump To :


Users viewing this topic
1 guests, 0 users.


All times are GMT. The time now is September 24, 2018, 8:24 am.

  Powered By AEF 1.0.8 © 2007-2008 Electron Inc.Queries: 11  |  Page Created In:0.150