Reply to post: Fearmongering, Uncertainty and Doubt

Insecure web still too prevalent: Boffins unveil HSTS wall of shame

Anonymous Coward
Anonymous Coward

Fearmongering, Uncertainty and Doubt

Once again, Troy and Scott massively overstate the problem. It is nonsense to suggest that a website served over HTTP is going to immediately expose you to phishing or malware, which is what they seem to be saying.

What does it matter if speedtest.net or bbc.com are accessible over HTTP?

if you want to create an account or login, then those pages are served over HTTPS anyway.

MITM attacks are not common, and not usually carried out by script-kiddie level perpetrators, they are much more likely to be carried out by ISPs or Governments (Like the Chinese Firewall), who will happily MITM HTTPS as well.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019