Jump to content
Why become a member? Read this.... Read more... ×
  • 0
pete.young

SIte security- https

Question

The site appears to be http only, with no consideration given to https. I get the padlock icon with a red line through it on Firefox telling me that passwords could be compromised, and similar warnings from Chrome and Vivaldi. I don't recall seeing this on the old site.

Bearing in mind that you are asking for not only passwords, but credit card details and paypal details in the shop section, https needs to be implemented immediately. I'd also recommend that you implement hsts and turn off http altogether, this is 2017 and there's really no reason to do it any other way.

Share this post


Link to post
Share on other sites

17 answers to this question

Recommended Posts

  • 0

And now SSL is live, thanks for your patience everyone :)

  • Like 3
  • Thanks 1

Share this post


Link to post
Share on other sites
  • 0
1 hour ago, pete.young said:

The site appears to be http only, with no consideration given to https. I get the padlock icon with a red line through it on Firefox telling me that passwords could be compromised, and similar warnings from Chrome and Vivaldi. I don't recall seeing this on the old site.

Bearing in mind that you are asking for not only passwords, but credit card details and paypal details in the shop section, https needs to be implemented immediately. I'd also recommend that you implement hsts and turn off http altogether, this is 2017 and there's really no reason to do it any other way.

Yes sir!

Share this post


Link to post
Share on other sites
  • 0

SSL certificate is high priority but we couldn't organise it until the site was already live with the correct server and domain.

It's on the list!

@ped - if it's not on the list can you put it on the list? ?

  • Thanks 2

Share this post


Link to post
Share on other sites
  • 0
21 minutes ago, Rikki_Sixx said:

Good effort getting an SSL certificate sorted so quickly! 

Note quite there, but it's almost done :)

Share this post


Link to post
Share on other sites
  • 0
1 minute ago, charic said:

Note quite there, but it's almost done :)

Quick work! Just a few scripts trying to pull content via non-https sources to fix & job's a good 'un.

Share this post


Link to post
Share on other sites
  • 0
6 minutes ago, nilebodgers said:

Quick work! Just a few scripts trying to pull content via non-https sources to fix & job's a good 'un.

Got an example I can check? :)

Share this post


Link to post
Share on other sites
  • 0

Oh beautiful work,  Char.

 

You should get a job working with with software.   :crazy:

  • Haha 1

Share this post


Link to post
Share on other sites
  • 0

The mediaplex http thing is back on the Elixir strings gif...

 

http://img-cdn.mediaplex.com/0/25163/182158/UK_BassStomp_468x60_new.gif?mpqs=&mpssl=1&mpvc=

 

Share this post


Link to post
Share on other sites
  • 0

Yup I know :)

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.

×