As I have recently asked a question, and received a response, I have gotten an email from ifixit letting me know
However, ''none'' of the links in the email are using HTTPS.
It also appears that none of the ``send.ifixit.com`` have any SSL certificates at all, making HTTPS impossible in the first place.
I'm not sure if this is the case in the actual ifixit.com emails due to the email I received being about ``meta.ifixit.com``, but I can imagine they use the ``send.ifixit.com`` analytics system
As more and more browsers mark HTTP only sites as completely insecure, this might be worth bringing to attention. Often with this, comes a big scary warning.
As it appears to be an Nginx server, (Assuming you host and control it completely yourself) this shouldn't be a long-term project, and I imagine it would only take a few hours max to implement it (I don't know your backend setup though)
[image|97505]
[image|97504]
As I have recently asked a question, and received a response, I have gotten an email from ifixit letting me know
However, ''none'' of the links in the email are using HTTPS.
It also appears that none of the ``send.ifixit.com`` have any SSL certificates at all, making HTTPS impossible in the first place.
I'm not sure if this is the case in the actual ifixit.com emails due to the email I received being about ``meta.ifixit.com``, but I can imagine they use the ``send.ifixit.com`` analytics system
As more and more browsers mark HTTP only sites as completely insecure, this might be worth bringing to attention. Often with this, comes a big scary warning.
As it appears to be an Nginx server, (Assuming you host and control it completely yourself) this shouldn't be a long-term project, and I imagine it would only take a few hours max to implement it (I don't know your backend setup though)
[image|97505]
[image|97504]
