Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

This website does not use SSL ?


  • Please log in to reply
4 replies to this topic

#1 Linux_User

Linux_User

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 26 April 2016 - 10:37 AM

Is there any particular reason this "security" related website isn't using SSL to encrypt logins ? .. particularly when it requires you to send login details and people have a bad habit of using the same password for multiple websites.

Edited by Queen-Evie, 26 April 2016 - 10:44 AM.
moved from Linux & Unix


BC AdBot (Login to Remove)

 


#2 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,697 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:48 AM

Posted 26 April 2016 - 10:41 AM

I suggest you to read the thread below.

http://www.bleepingcomputer.com/forums/t/605311/secured-connection/

animinionsmalltext.gif
unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#3 Linux_User

Linux_User
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 26 April 2016 - 10:44 AM

If it's in the pipeline, fair enough ;)



#4 4dude

4dude

  • Members
  • 578 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:48 AM

Posted 17 May 2016 - 02:10 PM

We do not have the site running https at the current time but plan on having it done in the near future.


I hope you dont FORCE HTTPS as alot of us wont be able to directly get here then.... (Allot ppl who still want to use HTTP to do so)


No reason really to have a site like this HTTPS .. You just introduce possible connection problems FOR NO REASON.....

#5 Grinler

Grinler

    Lawrence Abrams


  • Admin
  • 43,665 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:05:48 AM

Posted 17 May 2016 - 02:19 PM

No I wont force it. I am not 100% sure how we are going to implement it yet. It is going to require a lot of code rewrite and lots of potential problems for the forums where dynamic content is regularly posted.

I may just implement it on the sections of the site where dynamically generated content is not created and in the login form.

I have a SSL cert already installed on the server, but disabled from external use until I can work out the kinks and strategy.

I don't see why regular http can't continue to be an option.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users