My copy of a firewall program, Zonealarm, reports that Auctionsniper is repatedly (about 10-12 times for each page) sending my ebay password in unencrypted form (clear text) to the Auctionsniper server.
Is this correct? If so, this is a MAJOR security problem that every one of your users should be aware of. I was certainly unaware that my ebay login and password were being transmitted so frequently in unencrypted for.
My zonealarm program makes the Auctionsniper site unusable, with these warnings. If this problem is not fixed, I'd rather keep Zonealarm and forgo your service, given the huge hole in your security handling that it has highlighted.
Original Post