Customers With Disabilities
  • RESIDENTIAL
  • BUSINESS

    Verizon Business Sites

  • WIRELESS
Announcements
.
graymare

Secure The Forum Login Page

Status: Already Exists
by graymare on ‎08-21-2010 05:31 AM - last edited on ‎08-26-2010 12:36 PM by Employee Emeritus

The Forum login page does not appear to be "secure". The address has HTTP vs HTTPS and I don't see a "lock". Exposes user ID and password to hackers.

 

My browser is Internet Explorer

Status: Already Exists
We did take a look and confirm the flow. When data is submitted, it is sent https as is pointed out below.
Comments
by on ‎08-21-2010 07:24 PM

I think this is even more important with Verizon 2.0 and the forums being linked together with everything else that includes our billing accounts.

by on ‎08-21-2010 08:30 PM

You are indeed observant and right to be concerned.   However, if you take a look at the HTML source behind the logon form, you'll see that the post of the contents is actually made to:

 

https://signin.verizon.com/sso/authsso/forumLogin.jsp

 

Note the "https".  The contents of your login credentials are indeed being passed in a secure manner.   No worries.

 

by Gold Contributor VII ‎08-21-2010 08:35 PM - edited ‎08-21-2010 08:37 PM

Also, if you watch the address bar when you actually send the login information you will see the http change to https while the login is occuring, and then change back to http when it is completed. At least I see that on Firefox, I don't know if you would see the same on other browsers, but I think you would.

by on ‎08-22-2010 05:02 PM

 


graymare wrote:

The Forum login page does not appear to be "secure". The address has HTTP vs HTTPS and I don't see a "lock". Exposes user ID and password to hackers.

 

My browser is Internet Explorer


Yes they are correct. This was discussed last year, and my memory fails me. But it is even more important now. Same applies for Email. The forums do it the same way.

 

 

http://forums.verizon.com/t5/FiOS-Internet/Verizon-Email-Passwords-Can-Be-Seen-in-Clear-Text/m-p/131...

by Employee Emeritus on ‎08-23-2010 04:39 PM
Status changed to: Acknowledged
 
by Employee Emeritus on ‎08-26-2010 12:36 PM

Changed category to Verizon Community.

by Admin Emeritus on ‎10-05-2010 12:01 PM
Status changed to: Under Review
 
by Admin Emeritus on ‎11-15-2010 12:16 PM
Status changed to: Already Exists
We did take a look and confirm the flow. When data is submitted, it is sent https as is pointed out below.
by Gold Contributor VII on ‎11-15-2010 05:57 PM

It is not as secure as we (the end users would like).

 

I point to http://forums.verizon.com/t5/Share-Your-Ideas-with-Verizon/Please-deploy-full-SSL/idi-p/244061

 

Idea Statuses
Have an Idea?
If you have a new idea to share, please search before posting. Many times someone else has already posted your idea and you can just vote there instead!
 

Account & Services

  • Pay Bill
  • Add/Change Services
  • Manage My Rewards+
  • Renew Your Contract
  • Manage Services
  • Visual 411

Email, News & TV

  • Check Email
  • Announcements

Support Tools