Daerandin
Well-Known Member
I have noticed that this website does not automatically redirect to the https version of the website. I don't know if this is by design, leaving it up to the users if they wish to visit the website over plaintext or not, but it is common practice to automatically redirect to https as long as it is available.
A lot of users might not even be aware of this, and if they login over http then their password is sent as plaintext, and easily intercepted.
A lot of users might not even be aware of this, and if they login over http then their password is sent as plaintext, and easily intercepted.