Is this really still the case? | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		3pt14159 on July 28, 2014 \| parent \| context \| favorite \| on: We Experiment On Human Beings Is this really still the case?

handsomeransoms on July 28, 2014 [–]

Oh, yeah :/ The login page is over SSL, but everything after that is not (!!) This protects your password but not your OkCupid session cookies. It's an improvement over no SSL at all (which was the case for a long time) but still leaves a lot to be desired.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact