Heroes of Might and Magic Community
visiting hero! Register | Today's Posts | Games | Search! | FAQ/Rules | AvatarList | MemberList | Profile


Age of Heroes Headlines:  
5 Oct 2016: Heroes VII development comes to an end.. - read more
6 Aug 2016: Troubled Heroes VII Expansion Release - read more
26 Apr 2016: Heroes VII XPack - Trial by Fire - Coming out in June! - read more
17 Apr 2016: Global Alternative Creatures MOD for H7 after 1.8 Patch! - read more
7 Mar 2016: Romero launches a Piano Sonata Album Kickstarter! - read more
19 Feb 2016: Heroes 5.5 RC6, Heroes VII patch 1.7 are out! - read more
13 Jan 2016: Horn of the Abyss 1.4 Available for Download! - read more
17 Dec 2015: Heroes 5.5 update, 1.6 out for H7 - read more
23 Nov 2015: H7 1.4 & 1.5 patches Released - read more
31 Oct 2015: First H7 patches are out, End of DoC development - read more
5 Oct 2016: Heroes VII development comes to an end.. - read more
[X] Remove Ads
LOGIN:     Username:     Password:         [ Register ]
New Server | HOMM1: info forum | HOMM2: info forum | HOMM3: info forum | HOMM4: info forum | HOMM5: info forum | MMH6: wiki forum | MMH7: wiki forum
Heroes Community > Turban Tribunal > Thread: Secure connection
Thread: Secure connection
Sokoro
Sokoro

Tavern Dweller
posted April 18, 2017 04:00 PM

Secure connection

why is the website not using secure connection when loggin user in?

 Send Instant Message | Send E-Mail | View Profile | Quote Reply | Link
Zenofex
Zenofex


Responsible
Legendary Hero
Kreegan-atheist
posted April 18, 2017 07:49 PM

Because it's using HTTP, not HTTPS. Why would you need to encrypt something which you would ultimately post in a public game forum anyway?

 Send Instant Message | Send E-Mail | View Profile | Quote Reply | Link
Sokoro
Sokoro

Tavern Dweller
posted April 18, 2017 07:57 PM

because i dont want others to see my password? or is that not affected?
I dunno, it was just some message from firefox, it whined about the input not being secured.

 Send Instant Message | Send E-Mail | View Profile | Quote Reply | Link
Zenofex
Zenofex


Responsible
Legendary Hero
Kreegan-atheist
posted April 18, 2017 08:02 PM

Firefox just states that the forum does not use SSL (the S from HTTPS), that's all. People on the forum won't see your password. You have reasons to worry only if you connect via some insecure wireless hotspot, otherwise few people will bother stealing your credentials to a place this.  

 Send Instant Message | Send E-Mail | View Profile | Quote Reply | Link
fred79
fred79


Promising
Undefeatable Hero
posted April 18, 2017 08:19 PM

except maybe skeleton_king or herry.

 Send Instant Message | Send E-Mail | View Profile | Quote Reply | Link
frostysh
frostysh


Bad-mannered
Famous Hero
WHY?
posted April 28, 2017 08:40 AM

I am not understanding much in this stuff, but <imho> HTTPS is more cool than HTTP, so https://heroescommunity.com +1 .
____________

 Send Instant Message | Send E-Mail | View Profile | PP | Quote Reply | Link
dredknight
dredknight


Promising
Supreme Hero
disrupting the moding industry
posted May 01, 2017 10:05 PM
Edited by dredknight at 22:06, 01 May 2017.

Hello there!

Https is a good thing to introduce to any site where people log in.
To move to HTTPS one have to sign a certificate for the SSL connection from a signing certificate authority(CA). And the certificate should be renewed on a yearly basis.

One such authority for example is Commodo. What we need is a single domain certificate which at commodo costs 10$ per year.

p.s. the higher the price the better the security
____________
Find an opponent at HoMM55 Tavern! | NCF Utility Alpha

 Send Instant Message | Send E-Mail | View Profile | Quote Reply | Link
Zenofex
Zenofex


Responsible
Legendary Hero
Kreegan-atheist
posted May 01, 2017 10:19 PM

SSL is fairly vulnerable nowadays and frankly I see no point in implementing certificate-based security to a web-site where people spend most of their time in idle chatter. Moreover if the CA is not well-known and thus not in the list of the "trusted" CAs of the respective user's browser, it will constantly throw "untrusted certificate" errors which will probably generate even more concerned posts.

 Send Instant Message | Send E-Mail | View Profile | Quote Reply | Link
artu
artu


Promising
Undefeatable Hero
My BS sensor is tingling again
posted May 01, 2017 11:54 PM

zenofex said:



____________
I hope I am mistaking - frostysh

 Send Instant Message | Send E-Mail | View Profile | Quote Reply | Link
Zenofex
Zenofex


Responsible
Legendary Hero
Kreegan-atheist
posted May 02, 2017 09:40 AM

You should stop using Google Translate, there are at least 10 grammar mistakes in that translation.

 Send Instant Message | Send E-Mail | View Profile | Quote Reply | Link
Jump To: « Prev Thread . . . Next Thread »
Post New Poll    Post New Topic    Post New Reply

Page compiled in 0.0195 seconds