Security issue: Your main site is not SSL protected, why is that? Mikmon2015 — Apr 12, 2018 07:36AM PDT
On the URL bar, there is gray padlock with red strikethrough, that means connection to the server is not secure. This is with Firefox browser. This happens in the food diary site, URL http://www.myfitnesspal.com/
When you manually type https://www.myfitnesspal.com it defaults to http://www.myfitnesspal.com
Your helpdesk (https://myfitnesspal.desk.com) is working as it should be and SSL connection is formed and the padlock icon is green.
Can you fix this security issue? How can you know your Android App is secure?
1 Community Answers
Best Answer Apr 12, 2018 09:18AM PDT Bruce
We have technical and organizational measures in place to protect your information. Specifically, we have a secure login process designed to protect your information as you access MyFitnessPal (i.e., login and profile data are submitted using HTTPS POST actions).
The login pages of the MyFitnessPal that are encrypted via https include:
Although our home page at http://www.myfitnesspal.com may not indicate the presence of https in your browser’s interface, the actual login “lightbox” or pop-over window on the home page does send your login credentials via https.
After login, the MyFitnessPal website does not always load in HTTPS only mode (i.e. padlock not fully closed or green). This is because we sometimes load public content like images, public text from Under Armour, images & text from our advertising partners, and other non-user data using HTTP. While we load that public content using HTTP, we load user content using HTTPS.
All the best,