[Eril-l] Vendor login pages not using https
Bob Pearson
b.pearson at auckland.ac.nz
Mon May 15 20:56:06 PDT 2017
Login pages for a couple of major vendors - EBSCOadmin login (http://eadmin.ebscohost.com/eadmin/login.aspx) and Ovid's personal account login - are at http, rather than https.
Doesn't this mean that our IDs and passwords are being sent over the wires in clear text and unencrypted?
Have I got my wires crossed - or is this a risky security failing that we should be pressuring the vendors to change?
Bob Pearson
Digital Access Librarian
The University of Auckland Library
New Zealand
More information about the Eril-l
mailing list