So I decided (this morning) to do some more research on SSL encryption and it’s effect on website security and performance.
I tend to use Takealot.com as my default website for checking security compliance and performance. If any South African website should be up-to-date in regards to international security standards, it should be South Africa’s largest e-commerce retailer, Takealot.
I invite you to click on this link (https://www.takealot.com/) to view the Takealot home page over an encrypted connection.
If you’re using Firefox, you should be presented with a screen looking something like this:
Not only has the SSL certificate expired (June 13th, 2015), it is only valid for the “www.kalahari.com” domain.
To be fair, the Takealot login link on the home page redirects to https://secure.takealot.com/ which does have a valid SSL certificate. This does not help people like me who would like to browse the website over a secure connection without being signed in.
This may not be a security catastrophe, but it’s an unnecessary blemish on what is most likely a secure shopping platform.
If you have a connection with someone at Takealot, why not send them to this post – maybe they’ll do something about it. 😛