This forum currently offers login pages under both http and httpS protocols. The http protocol opens users up to sniffing and account hijacking.
My suggestion is to make the whole forum, or at least the login pages, https only.
Thanks!
This forum currently offers login pages under both http and httpS protocols. The http protocol opens users up to sniffing and account hijacking.
My suggestion is to make the whole forum, or at least the login pages, https only.
Thanks!