just obvious request [https/SSL for forum?]

Got any ideas on how to improve the board? Let us know here!

Moderator: Jake

Post Reply
User avatar
sexcuir
Regular poster
Posts: 60
Joined: Wed Mar 30, 2011 10:08 am
Contact:

just obvious request [https/SSL for forum?]

Post by sexcuir » Mon Jun 18, 2018 10:27 am

hello rom could have somme https verybody would be protected 8D
Last edited by SexySurgical on Mon Jun 18, 2018 10:57 am, edited 1 time in total.
Reason: []

User avatar
Rommeltje
The man in charge
Posts: 10057
Joined: Sat Nov 20, 2010 10:14 pm
Location: Amsterdam
Contact:

Re: just obvious request [https/SSL for forum?]

Post by Rommeltje » Mon Jun 18, 2018 10:15 pm

We've had that discussion among the moderators, and this was the conclusion:
Rommeltje wrote:We can't. We'd have to switch from shared to dedicated hosting in order to that, and buy a certificate, which would up our costs considerably. I don't think we're enough at risk to make it worth that.

User avatar
SexySurgical
Rommeltje's Deputy
Posts: 7591
Joined: Wed Nov 24, 2010 1:04 am
Location: Dutchieland
Contact:

Re: just obvious request [https/SSL for forum?]

Post by SexySurgical » Tue Jun 19, 2018 4:45 pm

Details that really need to be protected, like bank details and addresses, can always be sent via e-mail, assuming enough trust has been built in previous communications.

Tpt35
Occasional poster
Posts: 10
Joined: Fri Oct 03, 2014 3:21 am

Re: just obvious request [https/SSL for forum?]

Post by Tpt35 » Sat Jul 14, 2018 5:25 pm

Okay, I want to make everyone understand that without SSL everything on this site including usernames and passwords are sent to the hosting server in plaintext. At the moment a malicious attacker can eavesdrop everything. I suggest that we use SSL encryption from the Let'sEncrypt organization (https://letsencrypt.org/). It is free and extremely easy to setup. Please take note in the companies that sponsor it. We all want a safer and secure Internet.

User avatar
SexySurgical
Rommeltje's Deputy
Posts: 7591
Joined: Wed Nov 24, 2010 1:04 am
Location: Dutchieland
Contact:

Re: just obvious request [https/SSL for forum?]

Post by SexySurgical » Sat Jul 14, 2018 5:57 pm

Agreed, we'll need to point that out more, our equipment and such is very functional, but not exactly brand new top notch.
Tpt35 wrote:Okay, I want to make everyone understand that without SSL everything on this site including usernames and passwords are sent to the hosting server in plaintext. At the moment a malicious attacker can eavesdrop everything. I suggest that we use SSL encryption from the Let'sEncrypt organization (https://letsencrypt.org/). It is free and extremely easy to setup. Please take note in the companies that sponsor it. We all want a safer and secure Internet.
Thanks for your participation and consideration!

rook
Occasional poster
Posts: 10
Joined: Tue Jun 11, 2013 10:17 pm
Location: Dutchieland

Re: just obvious request [https/SSL for forum?]

Post by rook » Mon Jul 16, 2018 7:31 pm

I do host some website's for other people on my VPS, with Directadmin.

I don't know who told you that you have to switch from shared to dedicated, but i have several domains/users who use the Let's Encrypt method to activate SSL.

Send me an message if you need more information.

User avatar
Rommeltje
The man in charge
Posts: 10057
Joined: Sat Nov 20, 2010 10:14 pm
Location: Amsterdam
Contact:

Re: just obvious request [https/SSL for forum?]

Post by Rommeltje » Mon Jul 16, 2018 10:07 pm

rook wrote:I don't know who told you that you have to switch from shared to dedicated, but i have several domains/users who use the Let's Encrypt method to activate SSL.
Googling it again, I think I got some outdated info.

I've tried something that should work (Cloudflare). if not, I'll send you a PM. If so, we'll be on https from now on.

Thanks for your reply!

User avatar
Rommeltje
The man in charge
Posts: 10057
Joined: Sat Nov 20, 2010 10:14 pm
Location: Amsterdam
Contact:

Re: just obvious request [https/SSL for forum?]

Post by Rommeltje » Fri Jul 20, 2018 9:23 pm

Attempt 1: failed.

Post Reply