SSL Question

  • Started
  • Last post
  • 1 Response
  • nearestexit

    So I'm checking out my bank statement today at wamu.com and I notice that when I enter my user name and password on the home page, the URL is http://www.wamu.com. Normally, for a site passing on sensitive information, I figured they'd use https://www.wamu.com.

    Does anyone know if the SSL is somehow part of the DIV tag? Is that possible? I don't really understand site security but now I'm all paranoid that their site isn't secure.

    nearestexit
    Flag
  • welded0

    I'm quite sure I could be wrong, but it sure does look like that little log in box isn't the best way to log in. It's form action has SSL, but as far as I can see the data is passed to it in the clear. I'd just click through to the log in page from now on.

    welded 0Permalink
    UpvoteDownvote
    Dogear
    Flag
    • Agreed ... but I get lazy myself sometimes.
      The answer is no unless it's an iFrame which no respecting developer would use anymore.
      ********
    • ... I knew that wasn't fitting.

      "would use anymore."
      ********
    Show [[ numHiddenNotes ]] more notesAdd Note
    SaveCancel