Leosghost - 7:29 pm on Oct 19, 2011 (gmt 0)
What the...? If that's true, they could do this without SSL.
Yes ..but by doing it when playing with SSL ..they get to be able to claim it is for "privacy and security reasons"..for "the user" ( bless them )..and the stripping of the query term ( the real reason for it all ) slides by / goes over the heads / is not understood, by the "non tech people"..or the "user" will fall for it and say yes "they do not want the nasty website that is at the end of the query chain spying on them"..thankyou Google for protecting us" they will think..
And Google speak to them of mysterious things such as man in the middle attacks and hint vaguely at credit card type security and thus the "security theatre" will work..and as Spiekerooger says they'll eventually expand it to "not signed in" ..and "opt out"..like they did with "instant" etc..