|
ForumsSega Master System / Mark III / Game GearSG-1000 / SC-3000 / SF-7000 / OMV |
Home - Forums - Games - Scans - Maps - Cheats - Credits Music - Videos - Development - Hacks - Translations - Homebrew |
Author | Message |
---|---|
|
what that "Not secure" in red, in Chromium’s url text field means?
Posted: Wed Dec 26, 2018 5:48 pm
|
when opening www.smspower.org, before the url appears a "Not secure" text in red, and the forum webpages opening seems way slower that what it used to be - is something wrong happening there? | |
|
Posted: Wed Dec 26, 2018 8:45 pm |
Because we don't (yet) use HTTPS, when you log in or search, your submitted data is readable by anyone controlling your internet connection. Browsers are increasingly warning about this by branding websites as not secure.
As a matter of common sense, you should not use the same password for SMS Power as you do for other websites on the internet. I recommend using a password manager (maybe built into your browser, maybe not) and a randomly generated password. I don't think we have any limits on password length or complexity. If you are concerned that someone may spy on your searches, or read your private messages, then you had better find another way to achieve these things. We will move to HTTPS one day, but we lack expertise and experience in this area. |
|
|
Posted: Thu Jan 03, 2019 5:50 pm |
Look into "Let's Encrypt". If you just log into your web host and check, it's probably a setting you can enable, at least it was for me. Took like 1 minute. I'm pretty sure it's why Chrome now requires https/SSL for all web traffic. They will also drop this site's ranking big time without it. |
|
|
Posted: Thu Jan 03, 2019 8:30 pm |
We already have that, but there's a bit more work needed to migrate as we need to ensure all content links are changed to match. | |
|
Posted: Fri Jan 04, 2019 12:51 am |
Gotcha. I just tried adding the "s" to http and it served the page just fine. Good luck with the content migration. | |
|
Posted: Mon Jan 28, 2019 7:22 pm |
Implementing an SSL certificate is VERY straight forward, There is nothing to migrate. Get your host to apply the certificate they should automatically copy your content to the new secure area. Then ensure you set up a htacces file with appropriate 301 redirects from http to https. The content remains unchnaged | |
|
Posted: Mon Jan 28, 2019 8:25 pm |
Avoiding mixed content is problematic. | |