Echo & Alexa Forums
General Category => Potpourri => Topic started by: SylvainG on January 04, 2019, 10:07:42 pm
-
Hi, new here. Was surprised to see that this site doesn't do HTTPS. At least, when I entered https://www.echotalk.org, I was greeted to a
Antirebate
"We find the Deals, You get the Savings!"
site instead of a secure communication version of Echotalk...
In these days an ages, I find this weird and unsettling... Anybody else?
-
I don't find it weird or unsettling after all, this is just a forum. not like you gave it any credit card info to join.
-
Some unaware of this might reuse passwords and the password here is either sent in Base64 (which is not encryption) or plain text, which is has been a no-no for several years now... All the forums I'm subscribed to have been using encryption for several years. I'm surprised this one doesn't.
-
Some unaware of this might reuse passwords and the password here is either sent in Base64 (which is not encryption) or plain text, which is has been a no-no for several years now... All the forums I'm subscribed to have been using encryption for several years. I'm surprised this one doesn't.
https does not mean the website is secure. it is too easy to get a ssl certificate whether it be real or fake.
-
Some unaware of this might reuse passwords and the password here is either sent in Base64 (which is not encryption) or plain text, which is has been a no-no for several years now... All the forums I'm subscribed to have been using encryption for several years. I'm surprised this one doesn't.
https does not mean the website is secure. it is too easy to get a ssl certificate whether it be real or fake.
Sites register certificates through third parties like Entrust or Verisign. Sites using self signed certificates or certificate from unknown third parties will be flagged in your browser.
-
Some unaware of this might reuse passwords and the password here is either sent in Base64 (which is not encryption) or plain text, which is has been a no-no for several years now... All the forums I'm subscribed to have been using encryption for several years. I'm surprised this one doesn't.
https does not mean the website is secure. it is too easy to get a ssl certificate whether it be real or fake.
Sites register certificates through third parties like Entrust or Verisign. Sites using self signed certificates or certificate from unknown third parties will be flagged in your browser.
most users will just click through most flags since they have no idea of what it is about or they could care less. if you care so much, why are you on this forum? It just proves my point. truth is, even you don't really care.
-
I care enough to use a password that is unique to THIS forum, hope you do the same for your sake. Not everyone do that hence my warning and question. Don't security bothers you?
-
HTTPS now works here :)
-
Much ado about nothing.
-
Whatever floats your boat but information security is important to me 8)