https://bugzilla.wikimedia.org/show_bug.cgi?id=25925
--- Comment #15 from Matthew Flaschen <mflasc...@wikimedia.org> --- "Of course, with logins still not required to use HTTPS, a lot of these security measures look rather silly." There are different attack scenarios, all of which should be dealt with. HTTPS is certainly very important for the eavesdropping scenario. However, password brute-forcing can be used against anyone, even those who always use HTTPS. -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes. _______________________________________________ Wikibugs-l mailing list Wikibugs-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
