Page 1 of 1

https

PostPosted: Wed May 03, 2017 3:59 pm
by Zucca
Since Let's Encrypt is now a reality, maybe PS Cave (forums) should switch to https at least on login page?

Re: https

PostPosted: Sun May 14, 2017 4:39 pm
by BenoitRen
For what purpose? It's not like sensitive information is being shared here.

Re: https

PostPosted: Mon May 15, 2017 11:00 am
by Zucca
Well I sure don't have any sensitive information on my profile for obvious reasons, others may... It would really bug if someone hijacked my account. If that happens, my profile information will be stored elswere for future spam, profiliation etc use.
Also Firefox has started to complain about plain text communication on logging page. If something the security will only harden in browsers. I think it's only a matter of time until browsers simply deny to send form data (especially password) over plain http.

Better to be safe than sorry.

Re: https

PostPosted: Tue Jun 20, 2017 3:05 pm
by Missagh
I have actually installed Let's Encrypt on a few of my pro sites. Once they will upgraded our cPanel, I may indeed add it here too. Although some other scripts needs updated too first.