Hosting provider staging servers using HTTPS but showing not secure when submitting login/password credentials to view the staging environment. Is this safe?

Leave a Comment / hosting

I recently had a penetration test done on a website that came back great results, but the staging server came back with some flags.

The provider’s staging environment is using HTTPS, but its showing as not secure when you’re typing in the Basic Authorization Login/Pass to view the staging website. I’ve submitted the issue to support and they said “Use a really long password”, but if its HTTP, it would still be not safe?

I’m not sure if I’m allowed to list the provider here, but they do a lot of CLOUD things and have come a long WAY.

Anyone with a better grasp of security know if this is anything to be worried about?



View Reddit by nw-web-designView Source

our recommended web hosting companies

NameCheap

website link: namecheap.pxf.io/Alaaeldin.medium

Hostinger

website link: https://hostinger.sjv.io/Jr95Qr

InMotion hosting

website link: partners.inmotionhosting.com/XxJ0Jg

Hubspot

website link: hubspot.sjv.io/DV2O35

Leave a Comment

Your email address will not be published. Required fields are marked *