+1

HTTPS Forum Login

Faraz Yashar 7 years ago 0

I'm not too fond of my passwords floating nakedly in HTTP headers... Employing SSL on the log in page and user account settings page would be much appreciated.

I'm personally less concerned with session hijacking, but that can be fixed by securing the entire forum if deemed necessary.