Yubico Forum

Re: Why isn't this forum using HTTPS?

2016-01-09T17:35:18+01:00

was thinking the same thing...
why is the forum not working over HTTPS as all the rest of the Yubico web services?

not even the user control panel uses https .. even the registration, login and user account settings uses plain http.. as such, the user email address...password.. otp auth string are sent via plain text instead of https and revealed in transit.

Statistics: Posted by Aditza — Sat Jan 09, 2016 5:35 pm

Re: Why isn't this forum using HTTPS?

2015-12-31T19:39:42+01:00

Totally agree. Nowadays, free https certificates can be obtained from

https://letsencrypt.org/about/

It would be really good if a security-related forum had an https address!

Statistics: Posted by alanrew — Thu Dec 31, 2015 7:39 pm

Why isn't this forum using HTTPS?

2015-12-21T16:19:03+01:00

I was surprised to find out that Yubico's forum is still on HTTP. Considering the security knowledge of the community, it's really frustrating that Yubico is sending the login information in cleartext. Is there someone working on this?

P.S. Sorry for the rant, the Yubikeys are amazing!

Statistics: Posted by tequir00t — Mon Dec 21, 2015 4:19 pm