Salem

Salem discussion forums
https://forum.salemthegame.com/

Password sent in plaintext

https://forum.salemthegame.com/viewtopic.php?f=10&t=6209

Page 1 of 1

Password sent in plaintext

PostPosted: Fri Apr 26, 2013 10:42 pm
by Kandarim
Personally, I think this is rather disturbing: when connecting to the salem forums, my password is being sent in plaintext as a HTTP POST request. In today's age, I think this merits a little attention. Some of us play salem on some public networks, from time to time :?

At least hash the password client-side (i'm hoping to god they're not stored plaintext server-side...)

Re: Password sent in plaintext

PostPosted: Fri Apr 26, 2013 11:34 pm
by sabinati
try https

Re: Password sent in plaintext

PostPosted: Sat Apr 27, 2013 9:19 am
by Kandarim
thanks! I wasn't even aware the forum supported it :)
All times are UTC [ DST ]
Page 1 of 1
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
http://www.phpbb.com/