Slashdot Mirror


Ask Slashdot: Dealing With Companies With Poor SSL Practices?

An anonymous reader writes Despite recent highly-publicized hacking incidents making the news, companies continue to practice poor cyber-security. I signed-up to buy something from [an online vendor] and upon completing signup through HTTPS, was sent my username and password in plain-text through e-mail. This company has done everything in its power to avoid being contacted for its poor technical practices, including using GoDaddy's Domains By Proxy to avoid having even WHOIS information for their webmaster's technical contact from being found. Given such egregious behavior, what do you do when you're left vulnerable by companies flagrantly violating good security practice?

2 of 141 comments (clear)

  1. Don't Do Business With Them by TechyImmigrant · · Score: 5, Insightful

    EOM

    --
    I should use this sig to advertise my book ISBN-13 : 978-1501515132.
  2. Shop elsewhere... by Frosty+Piss · · Score: 5, Insightful

    There really isn't much you can do about companies like this, except shop elsewhere. Sooner or later, they will have a breach, and the "security researchers" will have your credit card data.

    --
    If you want news from today, you have to come back tomorrow.