*
Welcome, Guest. Please login or register.
December 12, 2019, 07:56:45 AM

Login with username, password and session length

Recent

Author Topic: Is there a reason the forum does not use SSL?  (Read 170 times)

Offline Pascal

  • assistant
  • Posts: 25
Is there a reason the forum does not use SSL?
« on: November 13, 2019, 06:09:26 PM »
Soon next year Google and I assume all other Chromium base browsers will block access to websites that are not using SSL.

https://serverguy.com/ssl/google-forcing-ssl-certificate-websites/

Is there a reason why SSL is not being used?

Offline Andrew_McGuire

  • scientist
  • Posts: 499
Re: Is there a reason the forum does not use SSL?
« Reply #1 on: November 13, 2019, 06:25:01 PM »
This probably doesn't answer your question, but for what it's worth, some of us have never heard of SSL, have no idea what it is or does, and probably don't want to. SSM might be a different matter.
« Last Edit: November 13, 2019, 08:43:09 PM by Andrew_McGuire »

Offline Shahbahraz

  • mad scientist
  • Posts: 508
    • A Lead Odyssey
Re: Is there a reason the forum does not use SSL?
« Reply #2 on: November 13, 2019, 07:27:06 PM »
Secure Sockets Layer provides browser security by encryption.

Most sites will use the SSL secure protocol identified by using the HTTPS prefix, rather than just HTTP.

And yes, not using HTTPS is going to be a problem from next year.
Wargaming since the dark ages...

---https://aleadodyssey.blogspot.com/---

Offline AndrewBeasley

  • Supporting Adventurer
  • mad scientist
  • *
  • Posts: 986
Re: Is there a reason the forum does not use SSL?
« Reply #3 on: November 13, 2019, 10:18:01 PM »
The linked article does not state Google is forcing anyone and itís not up to Google to do so.  Itís taken TWO YEARS to get the ĎNot Secureí message up and running in most browsers.


They would like all sites to have SSL so that can claim they are delivering trusted sites only but as it is very easy to add a certificate to any site for free using services such as [size=78%]https://letsencrypt.org[/size] it will not take the fake sites long to add this to their own systems.


Given certificate revocation is a painful process to allow for appeals and errors, this is only temporary help.


To gain full ssl support, the site will need to be upgraded [/size][size=78%]https://wiki.simplemachines.org/smf/SMF2.1:Features[/size]


Iím happy to chip in a bit of PayPal to help but understand this is not a five minute fix...

Sic Parvis Magna <*>