WWGFA

hello rom could have somme https verybody would be protected

We've had that discussion among the moderators, and this was the conclusion:

Rommeltje wrote:We can't. We'd have to switch from shared to dedicated hosting in order to that, and buy a certificate, which would up our costs considerably. I don't think we're enough at risk to make it worth that.

Details that really need to be protected, like bank details and addresses, can always be sent via e-mail, assuming enough trust has been built in previous communications.

Okay, I want to make everyone understand that without SSL everything on this site including usernames and passwords are sent to the hosting server in plaintext. At the moment a malicious attacker can eavesdrop everything. I suggest that we use SSL encryption from the Let'sEncrypt organization (https://letsencrypt.org/). It is free and extremely easy to setup. Please take note in the companies that sponsor it. We all want a safer and secure Internet.

Agreed, we'll need to point that out more, our equipment and such is very functional, but not exactly brand new top notch.

Tpt35 wrote:Okay, I want to make everyone understand that without SSL everything on this site including usernames and passwords are sent to the hosting server in plaintext. At the moment a malicious attacker can eavesdrop everything. I suggest that we use SSL encryption from the Let'sEncrypt organization (https://letsencrypt.org/). It is free and extremely easy to setup. Please take note in the companies that sponsor it. We all want a safer and secure Internet.

Thanks for your participation and consideration!

I do host some website's for other people on my VPS, with Directadmin.

I don't know who told you that you have to switch from shared to dedicated, but i have several domains/users who use the Let's Encrypt method to activate SSL.

Send me an message if you need more information.

rook wrote:I don't know who told you that you have to switch from shared to dedicated, but i have several domains/users who use the Let's Encrypt method to activate SSL.

Googling it again, I think I got some outdated info.

I've tried something that should work (Cloudflare). if not, I'll send you a PM. If so, we'll be on https from now on.

Thanks for your reply!

Attempt 1: failed.

I second this, SSL support today si a must. Let's Encrypt makes it easy for any Unix-like server out there.

About the synchronization error, if you use a load balancer/s to spread the load into the servers, (and to avoid malicious atempts from botnets), you must add the cert to that/these machine/s.

I believe we do not have that much access to our shared hosting server.

7981878523 wrote: ↑Fri Feb 01, 2019 3:17 am I second this, SSL support today si a must. Let's Encrypt makes it easy for any Unix-like server out there.

About the synchronization error, if you use a load balancer/s to spread the load into the servers, (and to avoid malicious atempts from botnets), you must add the cert to that/these machine/s.