SSL

To keep abreast of site changes, or to post a question, idea or suggestion for the website.

Moderators: Keith B, Charles L. Cotton, carlson1


Russell
Senior Member
Posts: 2773
Joined: Sat May 20, 2006 12:46 pm

Re: SSL

Postby Russell » Thu May 04, 2017 8:25 am

Charles,

Consider adding your site into Cloudflare (Use the free account option) and you'll get SSL for free as well. This is what I use for texas3006.com. You'll also get the added benefit of spam bot and other web compromise filtering. It's a reverse proxy service, so you shouldn't have to make any changes on your host side.

Feel free to call me if you want to chat about it. I'm a pretty happy Cloudflare user.
http://www.texas3006.com - Texas 30.06 and 30.07 Signage Database.
Join us on Facebook at http://www.facebook.com/texas3006

User avatar

warnmar10
Senior Member
Posts: 354
Joined: Sun Jan 03, 2016 11:57 am

Re: SSL

Postby warnmar10 » Thu May 04, 2017 10:44 pm

Charles L. Cotton wrote:I'll check with our web host about an SSL.

Chas.
My web host offers free SSL and Cloudflare.

User avatar

Charles L. Cotton
Site Admin
Posts: 16561
Joined: Wed Dec 22, 2004 9:31 pm
Location: Friendswood, TX
Contact:

Re: SSL

Postby Charles L. Cotton » Fri May 19, 2017 9:02 am

The Forum now has an SSL. You need to reach the Forum using https://TexasCHLforum.com or https://www.TexasCHLforum.com to avoid the security warning you get by using www.TexasCHLforum.com.

Chas.
Image

User avatar

JustSomeOldGuy
Senior Member
Posts: 556
Joined: Sat Dec 26, 2015 10:49 am

Re: SSL

Postby JustSomeOldGuy » Fri May 19, 2017 10:21 am

Charles L. Cotton wrote:The Forum now has an SSL. You need to reach the Forum using https://TexasCHLforum.com or https://www.TexasCHLforum.com to avoid the security warning you get by using http://www.TexasCHLforum.com.

Chas.

:thumbs2:
member of the church of San Gabriel de Possenti
lay brother in the order of St. John Moses Browning
USPSA limited/single stack/revolver


tyree
Member
Posts: 62
Joined: Wed Aug 27, 2014 11:32 pm

Re: SSL

Postby tyree » Thu Jun 29, 2017 2:50 am

Charles L. Cotton wrote:The Forum now has an SSL. You need to reach the Forum using https://TexasCHLforum.com or https://www.TexasCHLforum.com to avoid the security warning you get by using http://www.TexasCHLforum.com.

Chas.


Thanks Charles.

May I also recommend that you set the site up to auto redirect all http requests to https? This will make it very easy for all users of the site to gain the security benefits even if they forget to type the "https" or don't realize the dangers of using http in this context. With the auto-redirect, all users will be protected from password theft, non-authentic posts & edits, etc. and the forum will have a smaller surface area for security attacks. This approach is considered a standard in the IT industry and doesn't really have a downside for forum users or stakeholders.

Each platform has different ways of configuring auto-force ssl/[pre-paid legal]. I haven't worked with phpbb recently, but you might start looking at adding a couple of lines to the .htaccess file. (cf. https://www.phpbb.com/community/viewtop ... &t=1977025)

User avatar

The Annoyed Man
Senior Member
Posts: 22797
Joined: Wed Jan 16, 2008 12:59 pm
Location: Grapevine, Texas
Contact:

Re: SSL

Postby The Annoyed Man » Thu Jun 29, 2017 5:38 am

tbrown wrote:Thank you for the quick reply. I recently got the warning about username/password not being secure. I'll add an exception for the site.

koiseptember wrote:Thank you for the quick reply. I recently got the warning about username/password not being secure. I'll add an exception for the site.

goldenslot
gclub online

This is getting monotonous.....
"Give me Liberty, or I'll get up and get it myself."—Hookalakah Meshobbab
"I don't carry because of the odds, I carry because of the stakes."—The Annoyed Boy
"Id aegre et in omnibus semper."—Quod Homo Aegre


flechero
Senior Member
Posts: 1190
Joined: Thu Dec 06, 2007 5:04 pm
Location: Central Texas

Re: SSL

Postby flechero » Thu Jun 29, 2017 8:15 am

strogg wrote: Granted I'm good enough to use a unique super random password for this site, not everyone does.


So "TXCHL" isn't unique? OOOhh- I can switch it to something super secret with numbers in it like "45acprules" Uncrackable, right? :lol:

Just having fun! :tiphat:

User avatar

JustSomeOldGuy
Senior Member
Posts: 556
Joined: Sat Dec 26, 2015 10:49 am

Re: SSL

Postby JustSomeOldGuy » Thu Jun 29, 2017 7:35 pm

flechero wrote:
So "TXCHL" isn't unique? OOOhh- I can switch it to something super secret with numbers in it like "45acprules" Uncrackable, right? :lol:

Just having fun! :tiphat:


This one is entertaining, along those lines....
https://howsecureismypassword.net/
member of the church of San Gabriel de Possenti
lay brother in the order of St. John Moses Browning
USPSA limited/single stack/revolver


Return to “Site Announcements, Questions & Suggestions”

Who is online

Users browsing this forum: No registered users and 2 guests