Configuration Error High Disclosure of credentials to network eavesdropper. Unauthorized access. Resources protected by HTTP authentication should only be accessible over HTTPS. Vega detected a resource requiring HTTP authentication. This resource was available over HTTP. If a user were to authenticate to this resource over HTTP, the supplied credentials would be sent in cleatrtext and be vulnerable to eavesdropping. HTTPS will prevent unauthorized disclosure of HTTP authentication credentials. OWASP Top 10 - 2007: Insecure Communications