News - May 19, 2013 (1 day ago)

A reminder: When flagging a post for deletion (except if its for DNP or against posting rules), please make sure it has a parent for the favorites to be transferred to. Information on how to flag is here and information on how to parent can be found here

X
Post in forum #28544 - The Bug Report Thread
Aurali
Contributor
1 year ago
aurali female horn hybrid looking_at_viewer looking_back lying nude pinup poon pussy raigonetta ratte solo tasteful_nudity rating:Explicit score:25 user:Ratte

GreyMaria said:

► Logging in always redirects to non-SSL
▼ Logging in always redirects to non-SSL

Bug: Logging in from HTTPS redirects to standard HTTP regardless of the user's preference (or requirements)

Expected behavior: HTTPS should stay HTTPS. Otherwise, encryption is... pointless!

Actual behavior: HTTPS connection becomes HTTP after login, resulting in decrypted connections and possibly exposing activities to data logger applications on the network.

Steps to duplicate:
- Navigate to https://e621.net/ and log in.
- You will be redirected to http://e621.net/user/home (not https://e621.net/user/home )

Added the dump to the required list, so it should keep you https

Respond | Report