Why isn't SSL login the default for Sandy?

I’m sad

Inappropriate?

3 people have this question

I have this question, too! Tell me when someone answers.
The more people who ask this question, the more it gets noticed.

Inappropriate?
Delete or Edit (for 15 minutes)

David Bolthouse replied on May 08, 2008 04:18

I agree. With all the personally identifiable information Sandy stores, having SSL as default could eliminate a number of potential liabilities for Sandy's helpers.

this answers the question

Add a comment This answers the question
Inappropriate?
Delete or Edit (for 15 minutes)

Thomas Nichols replied on June 10, 2008 13:51

Extra server load seems an acceptable price for such an application -- but they'll need to get the warnings on their SSL certs sorted out first ;-)

I’m sadly perplexed

this answers the question

2 Comments Add a comment This answers the question
Rael Dornfest, (Official Rep), commented on June 11, 2008 05:24

Hi Thomas! What warnings are you running into and under which browser and operating system?
Thomas Nichols commented on June 11, 2008 08:16

Hi Rael,
Firefox 3.0 (2008052906) on WinXP. I got a warning about '*.iwantsandy.com' -- I created an Exception, but can no longer find where they're stored so can't delete it to retest :-( From memory, cert expires on 20 June so that's not the issue - the error was IIRC that the cert was for a different site.
Also, slthough most images are over SSL you have one http image - http://s7.addthis.com/button1-bm.gif - so the page shows as "partially encrypted". This is all on https://iwantsandy.com/settings

Apart from minor issues like this the site is *so* good - thanks very much :-)