HTTPS is not required to log in to or access Salesforce
Impact area
Security
Severity
Medium
Affected element
Org Config
Rule ID
SF-0170
Impact
Use of unencrypted http protocol can expose confidential data.
Remediation
Switch to using https protocol.
Time to fix
30 min
References
This rule is linked to Common Weakness Enumeration CWE-284 Improper Access Control.
Impact area
Security
Severity
Medium
Affected element
Org Config
Rule ID
SF-0170
Impact
Use of unencrypted http protocol can expose confidential data.
Remediation
Switch to using https protocol.
Time to fix
30 min