• Hello, please REGISTER and become a member of our community! You will then be able to start threads, post comments and send messages to other members. Thanks!

HTTPS / SSL cert issues ?

Mr.Guvernment

Here i am again!
Elite Member
Joined
Apr 8, 2001
Messages
364
Reaction score
4
Points
18
Location
Calgary, AB
Get Shredded!
Just curious why IF forums is not under HTTPS, especially since it handles user logins.

if try to go to HTTPS, i get a cert but also get a mis-match error bitdefender flags and if you try to browse

https://www.ironmagazineforums.com/

You get a 404 so their is no HTTPS or proper redirects in place...

Makes it pretty easy for man-in-the-middle attacks and people to pull user login info if they really wanted...
 

charley

Registered Member
Joined
Jan 11, 2012
Messages
11,524
Reaction score
2,879
Points
0
Location
not here
Just curious why IF forums is not under HTTPS, especially since it handles user logins.

if try to go to HTTPS, i get a cert but also get a mis-match error bitdefender flags and if you try to browse

https://www.ironmagazineforums.com/

You get a 404 so their is no HTTPS or proper redirects in place...

Makes it pretty easy for man-in-the-middle attacks and people to pull user login info if they really wanted...

hey bro.. nobody is around to answer your question,, lots of people view threads here, but don't post.. if you have a question try asking prince, just p.m. him..
 

REHH

Super Moderator
Staff member
Registered Member
Joined
May 2, 2015
Messages
774
Reaction score
-27
Points
43
Charley what you doing over here?
Is my boyz sumner, bomber, and crazyT here to keep u company.
 

Arnold

Numero Uno
Staff member
Administrator
Joined
Nov 29, 2000
Messages
81,219
Reaction score
2,981
Points
113
Just curious why IF forums is not under HTTPS, especially since it handles user logins.

if try to go to HTTPS, i get a cert but also get a mis-match error bitdefender flags and if you try to browse

https://www.ironmagazineforums.com/

You get a 404 so their is no HTTPS or proper redirects in place...

Makes it pretty easy for man-in-the-middle attacks and people to pull user login info if they really wanted...

You make a good point, but I am not too sure what one would gain by hacking an account here?


hey bro.. nobody is around to answer your question,, lots of people view threads here, but don't post.. if you have a question try asking prince, just p.m. him..

I am always here Chuck.
 
Top