This bit is inaccurate, as far as I can tell: > it was also transmitting the... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		chairface on Feb 12, 2012 \| parent \| context \| favorite \| on: Anger for Path after Privacy Breach: So Many Apolo... This bit is inaccurate, as far as I can tell: > it was also transmitting the data in “plain text.” This would be like mailing a private letter to someone without the envelope. My understanding is that the data was transmitted over https, which is decidedly not like mailing a letter with no envelope.

pyre on Feb 12, 2012 | [–]

I think that another company brought to light during the last week was not using https. This may be adding to the confusion.

rsingel on Feb 13, 2012 | [–]

Path said it was sending over HTTPS, but storing in plaintext - protected by a firewall. No server-side encryption.

chairface on Feb 17, 2012 | [–]

That's still not like sending a letter without an envelope.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact