This group is all about men giving men a Blow Job. Whether you are Gay, Bi or Straight, you can give advice, share experiences, maybe look for someone to share a good BJ!
General topics related to the MWS Forum. Check here first for any news about MWS.
Any questions about how to use the Forum, Suggestions or Complaints. Post here, and I'll try to address your concerns. Thanks.
Forum rules
Sexual Questions and Discussions are not permitted in this area of the forum. This area is for General questions on the use of the board. Thank you.
gentleman wrote: ↑Sat Jan 04, 2020 5:37 am
Assume that anything you post here is being monitored; unfortunately this site, MenWhoSwallow, is sent unencrypted (HTTP) instead of encrypted (HTTPS) so anyone can listen in. So always be vague about locations and times and identities, etc.
The same holds true for email. The best approach is to have a pre-arranged meeting place that you never discuss over email. Then when you meet, verbally agree on a nookie spot and drive there.
The question is, why is this site not encrypted? Every time I log in Firefox reminds me that my ID could be stolen.
John: Why isn't this site encrypted? Why is there a Paypal tracking pixel in the pages?
gentleman wrote: ↑Sat Jan 04, 2020 5:37 am
Assume that anything you post here is being monitored; unfortunately this site, MenWhoSwallow, is sent unencrypted (HTTP) instead of encrypted (HTTPS) so anyone can listen in. So always be vague about locations and times and identities, etc.
The same holds true for email. The best approach is to have a pre-arranged meeting place that you never discuss over email. Then when you meet, verbally agree on a nookie spot and drive there.
John wrote: ↑Sat Oct 01, 2022 2:36 pm
That's correct WillsrvU. Just enter the https: to login securely.
With any other site I visit, such as banks, etc., you get automatically redirected to the https:// if you attempt to log into the non-secure http://. This should do that too. It should not be necessary for people to know to do differently since when ANYone fails to do so they compromise EVERYONE's privacy!
And what is with the Paypal tracking pixel? That' allows Paypal to build a list of everyone who logs into MWS based on matching their IP address.
slurpee wrote: ↑Sat Oct 01, 2022 3:55 pm
With any other site I visit, such as banks, etc., you get automatically redirected to the https:// if you attempt to log into the non-secure http://. This should do that too. It should not be necessary for people to know to do differently since when ANYone fails to do so they compromise EVERYONE's privacy!
And what is with the Paypal tracking pixel? That' allows Paypal to build a list of everyone who logs into MWS based on matching their IP address.
I see the same link as Will does without having to enter the https myself, it's automatically there. Don't see the Paypal pixel either. Might be something with your browser/settings? i'm on Firefox.
Cur1ous wrote: ↑Sat Oct 01, 2022 5:44 pm
I see the same link as Will does without having to enter the https myself, it's automatically there. Don't see the Paypal pixel either. Might be something with your browser/settings? i'm on Firefox.
That's because for one reason or another you started with the https:// protocol. The fact that anyone can access the forum using the http:// non-secure protocol means it's vulnerable. I don't know where I first got that link from. I've changed PCs many times since. But the fact is that anyone who enters "menwhoswallow.com" will default to the non-secure protocol unless the website enforces the https:// protocol by redirecting the log-in attempt like any bank, utility or even webmail server would. The MWS server does not do so.
And to further prove the point, try logging in under the non-secure http:// protocol. The fact that anyone CAN do that means it's vulnerable. The fact that you CAN log in under the https:// secure protocol proves nothing since the server is not enforcing that by redirecting non-secure attempts.
It's like saying that you can only get in the front door with a key, so the place must be secure even though the back door is not locked at all. The fact that the front door requires a key does not mean that the premises are secure as long as the back is unlocked.
I became aware of the tracking pixel because while the page was loading I would see "paypal" flash across the status line at the bottom of the screen whenever I opened a page. I used the PAGE INFO function of Firefox to examine the elements of the page and saw the tracking pixel among the contents, identifying what I saw flash across the status line. I didn't see it just now but apparently that's because I migrated from 1Mb/s DSL to fiber and the page loads so much faster. The fact is that when you open PAGE INFO and look at MEDIA you will find this:
slurpee wrote: ↑Sat Oct 01, 2022 8:39 pm
That's because for one reason or another you started with the https:// protocol.
I shortened quote but don't disagree with your thoughts of back door, I just had never signed in without it being HTTPS and didn't know it was accessible with HTTP only since it wasn't my experience. I use Firefox and just looked at its settings and in Privacy Security there is a choice of HTTPS only or both. Its set to HTTPS Only, maybe by default. The site probably is only one that can set it to HTTPS as banks etc do. When I click on your pixel link I get nothing.
