Name is required.
Email address is required.
Invalid email address
Answer is required.
Exceeding max length of 5KB

Security issue: Your main site is not SSL protected, why is that? Mikmon2015 — Apr 12, 2018 07:36AM PDT

On the URL bar, there is gray padlock with red strikethrough, that means connection to the server is not secure. This is with Firefox browser. This happens in the food diary site, URL http://www.myfitnesspal.com/

When you manually type https://www.myfitnesspal.com it defaults to http://www.myfitnesspal.com

Your helpdesk (https://myfitnesspal.desk.com) is working as it should be and SSL connection is formed and the padlock icon is green.

Can you fix this security issue? How can you know your Android App is secure?

1 Community Answers

Best Answer Apr 12, 2018 09:18AM PDT Bruce

Hi there,

We have technical and organizational measures in place to protect your information. Specifically, we have a secure login process designed to protect your information as you access MyFitnessPal (i.e., login and profile data are submitted using HTTPS POST actions).

The login pages of the MyFitnessPal that are encrypted via https include:

http://www.myfitnesspal.com
http://www.myfitnesspal.com/login
http://www.myfitnesspal.com/logout

Although our home page at http://www.myfitnesspal.com may not indicate the presence of https in your browser’s interface, the actual login “lightbox” or pop-over window on the home page does send your login credentials via https.

After login, the MyFitnessPal website does not always load in HTTPS only mode (i.e. padlock not fully closed or green). This is because we sometimes load public content like images, public text from Under Armour, images & text from our advertising partners, and other non-user data using HTTP. While we load that public content using HTTP, we load user content using HTTPS.

All the best,
Bruce
MyFitnessPal

Contact Us

Don't see the answer to your question?

Your fellow MyFitnessPal users and our Customer Happiness Team are always here to help.