2017 and still no https on keepass.info
A lightweight and easy-to-use password manager
Brought to you by:
dreichl
Menu
▾
▴
It's 2017 and unfortunately keepass.info still has no https. Keepass is such a critical piece of software for many people and the page that points to its download link should be HTTPS protected for sure (letsencrypt wink wink).
There is already a thread about this from 2015, but I just wanted to refresh this issue:
https://sourceforge.net/p/keepass/discussion/329220/thread/2e555702/
It was also discussed last year in the context of the update check not happening over https. I'm not arguing against https (I'd personally like to see it too) however you can visit the KeePass sourceforge page directly if you want full https from start to finish, or you can pay special attention to where the download link leads you (it should download from sourceforge over https), and of course the downloaded installer is digitally signed so you will be safe if you pay attention to that.