I just upgraded Tails the other day, and when I went to log into Hansa, the TOR browser made a big deal about the sign-in page not being encrypted. Does the nature of the TOR network make using https passe, or should Hansa be using https on their login page. FWIW, I tried to drop an "s" after the "p" in "http," but the page wouldn't load.
Any insight you all have into this would be great.
Thanks!
Because no one is going to be able to issue a certificate for Hansa. It makes no difference to get a random self-signed certificate or a lets-encrypt cert, because a phishing site could make one for their own URL.
Hidden services are already encrypted, so HTTPS adds nothing for black market sites.