PDA

View Full Version : SSL plugin improvement for a safe https connection



Veronika Nikolaeva
October 27, 2013, 01:05 PM
Dear Flynax Team,

All of us know that the jump from an https page to another not secured (http) it's dangerous because all user data are passed "in clear" (are readable).
May suffice even a single gif image or css/js file (loaded without https ) to render the connection not safe.


So in my opinion the SSL plugin should have only this 2 functions:
1) pointing all pages on which you want to start/force the ssl connection (including the ajax popup for login!).
2) always keep an SSL connection on the whole site (plugins included) until the user remains logged in.