Some ideas about improving the security of the site: 1. Drop http connections for authentication pages 2. Fix the kamailio.org certificate. At the moment the identity of the domain can't be established as there is no issuer chain provided with it.