Rules/FAQ | Memberlist | Calendar | Stats | Online users | Last posts | Search
|
| ||
| Views: 20,023,596 |
Home
| Forums
| Uploader
| Wiki
| Object databases
| IRC
Rules/FAQ | Memberlist | Calendar | Stats | Online users | Last posts | Search |
04-23-24 08:40 PM |
| Guest: | ||
| 0 users reading HTTPS bandwagon: jump on it? | 1 bot |
| Main - General Chat - HTTPS bandwagon: jump on it? | Hide post layouts | New reply |
| Would you use HTTPS? | |
| Yes | |
| No | |
| Multiple voting is not allowed. Changing your vote is allowed. 7 users have voted so far. | |
| Arisotura |
| ||
 Star Mario in this room you have a pile of apple pies Level: 163 
Posts: 5365/9019 EXP: 56249704 Next: 237940 Since: 07-03-12 From: in a box 
Last post: 12 days ago Last view: 1 day ago |
I'm wondering if I should do that.
Pros: * authentication: if shit is done right, you know you're talking to the real K64 server and not a rogue server * security: logging in doesn't transmit your plaintext password (which can be an issue on public networks with trolls sniffing shit) * you get away from whatever blocks port 80 (or web filters) Cons: * costs money (although much less than a few years ago) * needs one certificate per domain or something like that (ie. multiple certificates if we also want to secure 4dsdev and some other things) * needs all assets on the page (images, etc) to come from https sources to be declared secure by the browser * some more complication in the board's code and related things if HTTPS and HTTP coexist (converting board URLs in posts, should KuriBot's links be HTTPS or HTTP?, ...) ____________________ NSMBHD - Kafuka - Jul melonDS the most fruity DS emulator there is zafkflzdasd |
| shibboleet |
| ||
 Fire Mario DROP TABLE users; Level: 123 Posts: 4043/4661 EXP: 20886754 Next: 344512 Since: 07-07-12 Last post: 1347 days ago Last view: 360 days ago |
linking everything from https is a bitch. ____________________ a |
| Arisotura |
| ||
|
Star Mario in this room you have a pile of apple pies Level: 163
Posts: 5366/9019 EXP: 56249704 Next: 237940 Since: 07-03-12 From: in a box
Last post: 12 days ago Last view: 1 day ago |
most services like Dropbox or imgur already have HTTPS
the issue would mostly be people embedding shit from their own HTTP-only server (or those making HTTP links, but arguably, for the most common services, you can recognize the links and remove their http prefix) ____________________ NSMBHD - Kafuka - Jul melonDS the most fruity DS emulator there is zafkflzdasd |
| shibboleet |
| ||
|
Fire Mario DROP TABLE users; Level: 123 Posts: 4044/4661 EXP: 20886754 Next: 344512 Since: 07-07-12 Last post: 1347 days ago Last view: 360 days ago |
well I do know that firefox goes "OMG CERT NOT VERIFIED" when something is outside of https, which is insanely annoying. ____________________ a |
| Arisotura |
| ||
|
Star Mario in this room you have a pile of apple pies Level: 163
Posts: 5367/9019 EXP: 56249704 Next: 237940 Since: 07-03-12 From: in a box
Last post: 12 days ago Last view: 1 day ago |
not 'cert not verified', but 'connection not secure' because some requests are made over HTTP, even though it doesn't matter in the case of images and such
then you have those douchebags yelling OMG VIRUS SITE when they see that, but hey, that kind of idiots isn't welcome here anyway ____________________ NSMBHD - Kafuka - Jul melonDS the most fruity DS emulator there is zafkflzdasd |
| Baby Luigi |
| ||
|
Baby Luigi Level: 53 
Posts: 133/749 EXP: 1115812 Next: 41307 Since: 03-13-16 From: Lost in Time Last post: 1725 days ago Last view: 1719 days ago |
the certificates are extremely irritating tbh. i don't manage websites that much though so i don't know that much
|
| Main - General Chat - HTTPS bandwagon: jump on it? | Hide post layouts | New reply |
|
Page rendered in 0.060 seconds. (2048KB of memory used) MySQL - queries: 28, rows: 206/206, time: 0.030 seconds. ![[powered by Acmlm]](img/poweredbyacmlm.png "powering nostalgia")
Acmlmboard 2.064 (2018-07-20)© 2005-2008 Acmlm, Xkeeper, blackhole89 et al. |