svyr
Headphoneus Supremus
- Joined
- Jun 8, 2009
- Posts
- 3,430
- Likes
- 485
Currently, head-fi/huddler submit your password in plaintext over an unsecured connection.
This generally means you shouldn't login in public wi-fi places (or might bee good to have a random password for head-fi that you change after using it in public wi-fi places, but still risky).
It would be nice if the login was done over SSL (HTTPS). Just the login...I don't really care about session hijacking...
This generally means you shouldn't login in public wi-fi places (or might bee good to have a random password for head-fi that you change after using it in public wi-fi places, but still risky).
It would be nice if the login was done over SSL (HTTPS). Just the login...I don't really care about session hijacking...