When it comes to thousands and thousands of users searching for that special someone through one of many largest free online dating sites, the love fest are coming to a conclusion. OkCupid is placing users’ privacy in peril by failing woefully to support protected use of its whole web site through HTTPS. Every email that is okCupid chat session, search, clicked link, page seen, and username is sent on the internet in unencrypted plaintext, where it could be intercepted and look over by anyone in the network.
Screen shot from OkCupid Help Forum. While passwords after inital signup aren’t sent within the clear, there are various other serious security dilemmas with OkCupid.com.
“HTTPS” is standard web encryption that ensures information delivered and gotten on the internet is encrypted in place of as plaintext. OkCupid will not enable HTTPS across the website, meaning that while OkCupid does not leak passwords entered during log in over plaintext, it will leak lots of other sensitive information. Continue reading “Hey OkCupid – exactly How about some SSL prefer?”