Page 1 of 1 [ 10 posts ] 

foxant
Snowy Owl
Snowy Owl

User avatar

Joined: 17 Jul 2015
Gender: Male
Posts: 131
Location: Brazil

19 Jan 2018, 3:25 am

i mean, https is much saffer, they said that sites with http only nowadays are not safe anymore. ok we have that cloudflare protection(for ddos attacks) when we acess the site, but why the owners dont update the site?


_________________
Your neurodiverse (Aspie) score: 152 of 200
Your neurotypical (non-autistic) score: 55 of 200
You are very likely neurodiverse (Aspie)

Special Interest: memes


steve30
Deinonychus
Deinonychus

User avatar

Joined: 16 Feb 2007
Age: 32
Gender: Male
Posts: 391
Location: Rotherham

19 Jan 2018, 4:17 am

Its not really a safety issue. All HTTPS will really do on a forum is stop your ISP or other network users from snooping on you. Everything you post on a forum is likely to be public anyway, so the only advantage to HTTPS is that snoopers won't know what you personally are doing.



Ichinin
Veteran
Veteran

User avatar

Joined: 3 Apr 2009
Gender: Male
Posts: 3,653
Location: A cold place with lots of blondes.

19 Jan 2018, 6:55 am

steve30 wrote:
Its not really a safety issue. All HTTPS will really do on a forum is stop your ISP or other network users from snooping on you. Everything you post on a forum is likely to be public anyway, so the only advantage to HTTPS is that snoopers won't know what you personally are doing.


It is a safety issue.

TLS also prevents ISPs and malicious users/orgs from injecting traffic into your session, ISPs have been known to try out injecting ads and malicious actors have been redirecting people to other sites.


_________________
"It is far better to grasp the Universe as it really is than to persist in delusion, however satisfying and reassuring" (Carl Sagan)


SH90
Veteran
Veteran

User avatar

Joined: 12 Jul 2016
Age: 33
Gender: Male
Posts: 1,558
Location: Florida

19 Jan 2018, 8:16 am

In simple terms, Alex doesn’t care. Why? This site/business isn’t making enough money. So no extra effort is put into the site anymore.



SplendidSnail
Veteran
Veteran

User avatar

Joined: 2 Jul 2017
Age: 43
Gender: Male
Posts: 887
Location: Canada

19 Jan 2018, 8:02 pm

steve30 wrote:
Its not really a safety issue. All HTTPS will really do on a forum is stop your ISP or other network users from snooping on you. Everything you post on a forum is likely to be public anyway, so the only advantage to HTTPS is that snoopers won't know what you personally are doing.

Even though everything on the forum is public, your password isn't. Nor is your session cookie.

Without HTTPS, someone snooping could grab your password and/or session cookie, which could be used to impersonate you and create posts as if they were you. I'd say that's enough to say that the site would benefit from HTTPS.

It's not just about spying on you when you create posts.


_________________
Level 1 Autism Spectrum Disorder / Asperger's Syndrome.


bunnyb
Veteran
Veteran

User avatar

Joined: 3 Mar 2016
Gender: Female
Posts: 589
Location: Australia

23 Jan 2018, 4:53 pm

If I wouldn't be even more painfully socially isolated, I wouldn't come here because of the lax safety of the site. Not just for the reasons mentioned but also because I hate being tracked. This site is tracked by google analytics, quantcast, medianet, contextualmedia and edge.quantserve. What we post on here shouldn't be any of their business but they have free access to everything we type. Like I said, if it wasn't for the loneliness factor, I'd stop coming. I think as a vulnerable group, we really should be given better protection. It's not like it would be hard to do. I use privacy badger but it doesn't get all the trackers. Some still get through. :skull:


_________________
I have a piece of paper that says ASD Level 2 so it must be true.


blackicmenace
Veteran
Veteran

User avatar

Joined: 28 Nov 2016
Age: 46
Gender: Male
Posts: 3,465
Location: Sagittarius A

30 Jan 2018, 8:57 pm

bunnyb wrote:
If I wouldn't be even more painfully socially isolated, I wouldn't come here because of the lax safety of the site. Not just for the reasons mentioned but also because I hate being tracked. This site is tracked by google analytics, quantcast, medianet, contextualmedia and edge.quantserve. What we post on here shouldn't be any of their business but they have free access to everything we type. Like I said, if it wasn't for the loneliness factor, I'd stop coming. I think as a vulnerable group, we really should be given better protection. It's not like it would be hard to do. I use privacy badger but it doesn't get all the trackers. Some still get through. :skull:


I personally use Ghostery to block trackers.


_________________
Do not fear to be eccentric in opinion, for every opinion now accepted was once eccentric.” ― Bertrand Russell


kokopelli
Veteran
Veteran

User avatar

Joined: 27 Nov 2017
Gender: Male
Posts: 3,634
Location: amid the sunlight and the dust and the wind

30 Jan 2018, 9:06 pm

steve30 wrote:
Its not really a safety issue. All HTTPS will really do on a forum is stop your ISP or other network users from snooping on you. Everything you post on a forum is likely to be public anyway, so the only advantage to HTTPS is that snoopers won't know what you personally are doing.


And if you are worried about being snooped upon, there are VPN packages that could be used to hide everything about your traffic from them. I keep meaning to try out Protonmail's version of VPN which covers not only your desktops and laptops, but your cell phones as well.



MariaTheFictionkin
Veteran
Veteran

Joined: 29 Nov 2017
Gender: Female
Posts: 1,254

30 Jan 2018, 9:09 pm

https was on for me today for some reason which made the embedded YouTube videos invisible. I had to disable it to see them.


_________________
[Inactive - I have left WP permanently]


ASPartOfMe
Veteran
Veteran

User avatar

Joined: 25 Aug 2013
Age: 66
Gender: Male
Posts: 34,244
Location: Long Island, New York

31 Jan 2018, 1:43 am

MariaTheFictionkin wrote:
https was on for me today for some reason which made the embedded YouTube videos invisible. I had to disable it to see them.


Embedded https you tube videos have not worked for me for months. I have been having to go and manually get rid of the “s”. What has changed for me in the last 24 hours on both my desktop and IPAD even if I manually eliminate the “s” the software automatically puts it back meaning it can’t see embedded youtube videos at all.


_________________
Professionally Identified and joined WP August 26, 2013
DSM 5: Autism Spectrum Disorder, DSM IV: Aspergers Moderate Severity

“My autism is not a superpower. It also isn’t some kind of god-forsaken, endless fountain of suffering inflicted on my family. It’s just part of who I am as a person”. - Sara Luterman