Can I log in securely with https?

• 

  citizensagainstsharia · Member · Jun 5, 2008 at 4:24 am

  • Copy link
  • Add topic to favorites

  First, an apology: I’m sure I’m just dense, but I can’t find this information anywhere. I want to log in using https, so no one can eavesdrop on my user ID and password. Can I do this? How? Thanks!

• 

  tellyworth · Staff · Jun 5, 2008 at 6:59 am

  • Copy link

  It’s automatic. The login form on the WordPress.com front page submits to a https page, so your username and password are sent encrypted, then redirects back to an unencrypted page.

  If you are in a place where you believe your online activity may be monitored you should consider additional security measures and be careful about what you post. https login will not stop an eavesdropper from seeing which WordPress.com blog/s you are visiting — anyone who can see you visit http:// yourblog.wordpress.com/wp-admin/ can conclude that you are that blog’s owner.

• 

  citizensagainstsharia · Member · Jun 6, 2008 at 5:36 am

  • Copy link

  Really! I was under the impression that it can only be secure if you see “https” on the address in the location bar.

  I’m not concerned about someone looking over my shoulder or inspecting my computer, just about password information being viewed by third parties in transit. Thanks for your help.