Here is a link I was just reading that sums up my thoughts about http VS. https.
The first two sections - https://www.techsupportalert.com/improv ... curity.htm
I use Tor and VPN to get around http, but none of these are a replacement or as secure as https, as they both have current and possible security holes and can not replace https. Http sends all information in plain text.
If someone stole my EA or yours, it would be like stealing my property / asset, not ok with me.
You can make your choice if this is ok or not, but you should not and can not make the choice on my behalf or others. If it is within your powers, you should not play with users security. You have responsibility for users security and their EA from start to finish on your site, you are informed now.
Do you mind telling me how Brokers / Metatatrader can steal EA's ? It is a quite important thing I know little about yet ?
On something unrelated, I recommend Forex Rebates I just came across.
I have not tried yet, only considering and reading about these so far (nothing to do with them and not promoting them. Read reviews before selecting any/if any of them). But looks like a good idea.
http://www.cashbackforex.com
http://www.forexrebatecentral.com
http://www.globegain.com
http://www.fxrebategurus.com
http://www.highrebateclub.com
http://www.kickbackfx.com
http://www.rebatearmy.com
http://www.piprebate.com
http://www.cashonforex.com
