Welcome to the Treehouse Community
Want to collaborate on code errors? Have bugs you need feedback on? Looking for an extra set of eyes on your latest project? Get support with fellow developers, designers, and programmers of all backgrounds and skill levels here with the Treehouse Community! While you're at it, check out some resources Treehouse students have shared here.
Looking to learn something new?
Treehouse offers a seven day free trial for new students. Get access to thousands of hours of content and join thousands of Treehouse students and alumni in the community today.
Start your free trialJenny Swift
21,999 PointsFirebug Security Warning
Hi, I installed and activated the Wordpress plugin called WP-FB Autoconnect because Zac recommended it in the Buddypress course, and I like it, however, firebug is now giving me the following message:
Password fields present on an insecure (http://) page. This is a security risk that allows user login credentials to be stolen.
What should I do about this please?
1 Answer
David Burgess
376 PointsIdeally, any time a person has to enter their username and password, that page should be encrypted with an SSL (https://).
I think that Firebug is just letting you know that, for the sake of security, you should install an SSL on your site. Not doing that leaves you more vulnerable to usernames and passwords being intercepted by hackers.
Wordpress.com actually had this issue recently because their login screen wasn't protected by an SSL.
Jenny Swift
21,999 PointsJenny Swift
21,999 PointsOkay, thanks David!