HTTPS is a safety must-have for forums

Talk about stuff specific to the site -- bugs, suggestions, and of course praise welcome.
Locked
AMDphreak_
Guest

HTTPS is a safety must-have for forums

Post by AMDphreak_ »

MZ does not implement HTTPS. This community would benefit from having a more secure login experience. It is expected for any website that accepts credentials to require SSL encryption at this point.
Brummelchen
Posts: 4480
Joined: March 19th, 2005, 10:51 am

Re: HTTPS is a safety must-have for forums

Post by Brummelchen »

already solved, more or less, this question is not new
http://forums.mozillazine.org/viewtopic ... &t=3028083
Lurtz
Posts: 359
Joined: June 12th, 2016, 12:25 pm

Re: HTTPS is a safety must-have for forums

Post by Lurtz »

It may not be new, but it is more pressing than ever. It is ironic that a site that handles Mozilla topics, one of the propagators of HTTPS, doesn't implement it.

The web is moving to full encryption. There's not excuse not to encrypt.
User avatar
DanRaisch
Moderator
Posts: 127186
Joined: September 23rd, 2004, 8:57 pm
Location: Somewhere on the right coast

Re: HTTPS is a safety must-have for forums

Post by DanRaisch »

These forums are maintained by an individual with limited funds and limited time. Just how much critical private information do you feel you have stored on these forums that would be at risk if someone sought to access it? While the web may be moving to full encryption, priority should be given to sites which store private, personal information, which is not really a valid description of the information you were asked for to register on the forums.
Lurtz
Posts: 359
Joined: June 12th, 2016, 12:25 pm

Re: HTTPS is a safety must-have for forums

Post by Lurtz »

I think we are past the priority stage, the trend to full encryption is almost finished, with over 70% of web traffic on Desktop already being encrypted. It's not even primarily about personal information anymore.

Let's Encrypt offers free certificates.
User avatar
James
Moderator
Posts: 27999
Joined: June 18th, 2003, 3:07 pm
Location: Made in Canada

Re: HTTPS is a safety must-have for forums

Post by James »

I imagine kerz could make use of https://letsencrypt.org/ if he really wanted to however past attempts to use mods or do changes did not always go well.
User avatar
akwala
Posts: 22
Joined: December 1st, 2005, 11:33 am

Re: HTTPS is a safety must-have for forums

Post by akwala »

Lurtz wrote:I think we are past the priority stage, the trend to full encryption is almost finished, with over 70% of web traffic on Desktop already being encrypted. It's not even primarily about personal information anymore.

Let's Encrypt offers free certificates.
+1
--aslamK
fsckDsk
Posts: 28
Joined: April 9th, 2018, 2:12 pm

Ironic

Post by fsckDsk »

This forum is about a privacy browser yet does not support secure HTTPS.
That's ironic!
User avatar
Frank Lion
Posts: 21173
Joined: April 23rd, 2004, 6:59 pm
Location: ... The Exorcist....United Kingdom
Contact:

Re: Ironic

Post by Frank Lion »

fsckDsk wrote:This forum is about a privacy browser
First I've heard of it.

You been reading mozilla's meaningless mission missives or something?
"The only thing necessary for the triumph of evil, is for good men to do nothing." - Edmund Burke (attrib.)
.
User avatar
James
Moderator
Posts: 27999
Joined: June 18th, 2003, 3:07 pm
Location: Made in Canada

Re: Ironic

Post by James »

fsckDsk wrote:This forum is about a privacy browser yet does not support secure HTTPS.
That's ironic!
This forum is independent and not a part of nor is it run by Mozilla. This forum is not only for desktop Firefox but also for support on a number of other things as you can see on the forum index http://forums.mozillazine.org/

It is up to the owner/admin if he wants to do this (major forum changes here has not always went well, like with database issues) when he has time with his busy job at Google and with life.

This is not a online store or a bank site or such.
Brummelchen
Posts: 4480
Joined: March 19th, 2005, 10:51 am

Re: HTTPS is a safety must-have for forums

Post by Brummelchen »

Mozilla/5.0 (Linux; Android 4.4.2; de-de; SAMSUNG SM-N9005 Build/KOT49H) AppleWebKit/537.36 (KHTML, like Gecko) Version/1.5 Chrome/28.0.1500.94 Mobile Safari/537.36
is this your used Android OS and browser? i am pretty sure this combination has more flaws and issues than this forum not available with ssl ;)
if faked, ofc has also not much advantages.
User avatar
Scarlettrunner20
Posts: 1016
Joined: February 13th, 2003, 5:06 pm

Re: HTTPS is a safety must-have for forums

Post by Scarlettrunner20 »

Why is encryption of forums a "safety must have"? I have TERRIBLE problems with all these now encrypted websites that have absolutely zero need to encrypt.

I've been coming here since 2003 and I have never experienced any safety issues here due to non encryption of the forums, but I sure have been blocked by Fx at certain sites which worked fine NON-encrypted but encrypted recently and now cannot be reached. At least my home site allows us to use it NON encrypted if we wish and I have set that in my preferences there.

To me, it is a safety issue for bank sites and a few others but the race to encrypt the entire internet is a race to keep users from being anon if they wish.
Locked