Home
Certification Preparation
Other Security Certifications
HTTP/HTTPS techexams
Jinverar
Hello group or sysadmins.
when I log into the techexams.net website I have noticed that it's a http no longer https. Any username and passwords can be sniffed from the plain text information transmitted from workstation to server. I could go into more detail here but I'm sure other people have posted and noticed this? Letsencrypt is offering free ssl certs.
Has anyone else noticed this?
Are there any posts with details on the progress the sysadmins are making to fix this?
I'm thinking of moving on due to lack of security or if I build another techexams 2.0 site would people come check it out?
J
Find more posts tagged with
Comments
chrisone
you plan on making the same site and just add v2.0 ? I will only come if it looks exactly the same as this current TE site
Iristheangel
1) It was never HTTPS so you're just noticing what was always there.
2) TE is in the middle of a huge overhaul by the new owners so you might want to sit tight and wait it out.
tedjames
It's been noted here many times, and every time the posts were deleted. Username is in cleartext. It's pretty easy to guess those, anyway. Passwords are MD5 hashed. Wireshark showed me that...
JDMurray
As Iristheangel said, TE is undergoing an overhaul and will soon have HTTPS/TLS capability. It is always on the member to use a strong password that would be very difficult to discover from only a salted hash.
Quick Links
All Categories
Recent Posts
Activity
Unanswered
Groups
Best Of
