Many security practices are boiled down and imposed by people that are not fully aware of the impracticality of the supposed exploit especially in a specific environment or the resources required to mitigate. I'm sure that the admins here at the time were displeased, but the response is a great study in how to respond to a breach correctly. Measured responses to difficult problems. This is a monastery, not a security fan club. From what I understand, the decision to encrypt the db was investigated, discussed, and dismissed. And revisiting the issue every so often is probably not a bad idea just because it starts making people think about security. But tunnel vision towards one specific problem / solution is not really helpful.

:) intercepting unencrypted traffic is trivial, but first you have to be on the same local network

so my roommate can intercept my lan traffic

yeah, so what, he can just as easily walk into my room

doing that from the other end of the internet is not trivial

doing that from the other end of the internet is not trivial

Depends if your room mate is as knowledgeable and careful as you are. If I can infiltrate his machine -- or any of the other 250 on your local subnet -- I can monitor your traffic.

For a site that has the claimed and demonstrated website expertise as this place; "the framework doesn't allow for this" is a pathetic excuse.

A secure login doesn't have to be a part of the "framework"; it could be a completely standalone process that sets a flag somewhere accessible from the framework.

That's all it would take! (That is doesn't exist, is pathetic!)

---

With the rise and rise of 'Social' network sites: 'Computers are making people easier to use everyday'

Examine what is said, not who speaks -- Silence betokens consent -- Love the truth but pardon error.

"Science is about questioning the status quo. Questioning authority". I knew I was on the right track :)

In the absence of evidence, opinion is indistinguishable from prejudice.

I have to agree with BrowserUK here...

What's preventing us from using SSL? Is it the cost? Of what? The certificate, or the implementation of one?

The bigger issue... what about adding in a 'plugin' or 'layer' to when you first hit PM to do auth?

I've never looked at the PM code before, but I will after my current project is completed (ie. stable for public use). I've been working on a bunch of auth scenario-type stuff at $work lately (in Python, not Perl), but perhaps we could come up with enough people to form a task force of some sort to resolve this issue.

The ease of implementation of course would be determined by how deeply the existing code relies upon the mechanism(s) we now have.