The screenshot in the article shows it's a HTTP GET request, so no encryption an... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

spyder on Aug 10, 2014 | parent | context | favorite | on: Testing the Xiaomi RedMi 1S

The screenshot in the article shows it's a HTTP GET request, so no encryption and the GET request makes it more likely it's getting stored not only in their db but in access logs of other servers (web server, load balancers, proxies).

sahaskatta on Aug 10, 2014 [–]

So if they did use HTTPS and possibly encrypt the content underneath as well, would this not be an issue or is there more?

stavros on Aug 10, 2014 | [–]

It would still be an issue, this just makes it larger.

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact