Reply to post: Why force HTTPS on simple read-only pages

A third of you slackers out there still aren't using HTTPS by default

mpi Silver badge

Why force HTTPS on simple read-only pages

...with no login features or transactions taking place?

They display text. There is no login, there is no transactions. There are no cookies. The page visitors give up no secrets they aren't giving to their ISPs anyway.

Forcing "HTTPS Everywhere" on such pages is similar to locking every door in a house, not only the front door. It doesn't increase security,

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon