Any chance of having an SSL certificate installed?
Any chance of having an SSL certificate installed?
Seth O.
ESR #2474
1966 911 - '77 2.7L Hot Rod
1967 Pontiac Bonneville - '70 455
2000 996
WANTED: 1966 Transaxle 229835-902/1
Out of curiosity, why? Not that it's any of my business.
@LiveFromNY Of course it is your business -- the way I understand it, the certificate will further protect you from hackers when browsing these forums.
Jim
__________________________________________________ ___________
Early S Registry #2359
1970 Porsche 911 Rally 2.4
2018 Porsche Macan GTS
Mainly because you have to log into this forum. Which means passwords are passed cleartext across the web.
Seth O.
ESR #2474
1966 911 - '77 2.7L Hot Rod
1967 Pontiac Bonneville - '70 455
2000 996
WANTED: 1966 Transaxle 229835-902/1
Yes, but it's a cost/benefit in a situation like this. You'll notice that lots of forums decide the cost is not worth the benefit in their situation. Pelican, 356 reg, etc are running http. Rennlist and Samba have gone https and at least one regrets that decision. My guess is, as a smaller group, and with the limited technical resources that seem to be available (let alone the limited technical knowledge on display) we'd find ourselves in the non-https group give any objective analysis (at least for now).
SSL certificates are very cheap these days. And modern browsers are now displaying "Not Secure".
I'd love to know why Rennlist or the Samba had a problem going HTTPS.... My guess is it broke something on the back end.... Because for basic browsing of a site, it's really an easy thing.
Seth O.
ESR #2474
1966 911 - '77 2.7L Hot Rod
1967 Pontiac Bonneville - '70 455
2000 996
WANTED: 1966 Transaxle 229835-902/1
Fun fact... the latest data suggests the "not secure" display that Chrome implemented in July is affecting less than one half of one percent of users. It's a rounding error.
The cost of the certificate is irrelevant. The cost/risk is in a proper and comprehensive installation which amateurs THINK is easy and professionals KNOW is actually deceptively easy. A key difference.
The site that regrets it's move to https lost more than 50% of their traffic because their technologist didn't understand the importance of having a proper and well-planned redirect strategy from http to https pages. Only one of the things he missed. Not their fault. I've seen smarter people make dumber mistakes.
Last edited by LiveFromNY; 11-14-2018 at 06:12 PM.
Are we boring people yet?
Seth O.
ESR #2474
1966 911 - '77 2.7L Hot Rod
1967 Pontiac Bonneville - '70 455
2000 996
WANTED: 1966 Transaxle 229835-902/1
Hardly stupid if you're the one responsible for keeping the organization alive.
As a tech CEO, Internet security is ALL of my job and I'd argue that it's a small problem on a site that doesn't store personal or financial information. We're a very low-value target.
If there's extra $$ in the tech budget, I'd suggest a mobile plug-in. Half the world's Internet traffic is mobile and the site's almost unusable on my iPhone.