Does anyone know a good explainer text why hybrid HTTP/HTTPS solutions (aka "only login encrypted") are always insecure?
-
-
(so a MITM attacker can iirc just grab your saved creds for all http sites he knows w/o user interaction)
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.