Forums

Sega Master System / Mark III / Game Gear
SG-1000 / SC-3000 / SF-7000 / OMV
Home - Forums - Games - Scans - Maps - Cheats - Credits
Music - Videos - Development - Hacks - Translations - Homebrew

View topic - what that "Not secure" in red, in Chromium’s url text field means?

Reply to topic
Author Message
  • Joined: 01 Aug 2012
  • Posts: 322
  • Location: Porto, Portugal
Reply with quote
what that "Not secure" in red, in Chromium’s url text field means?
Post Posted: Wed Dec 26, 2018 5:48 pm
when opening www.smspower.org, before the url appears a "Not secure" text in red, and the forum webpages opening seems way slower that what it used to be - is something wrong happening there?
  View user's profile Send private message Visit poster's website
  • Site Admin
  • Joined: 19 Oct 1999
  • Posts: 14690
  • Location: London
Reply with quote
Post Posted: Wed Dec 26, 2018 8:45 pm
Because we don't (yet) use HTTPS, when you log in or search, your submitted data is readable by anyone controlling your internet connection. Browsers are increasingly warning about this by branding websites as not secure.

As a matter of common sense, you should not use the same password for SMS Power as you do for other websites on the internet. I recommend using a password manager (maybe built into your browser, maybe not) and a randomly generated password. I don't think we have any limits on password length or complexity. If you are concerned that someone may spy on your searches, or read your private messages, then you had better find another way to achieve these things.

We will move to HTTPS one day, but we lack expertise and experience in this area.
  View user's profile Send private message Visit poster's website
  • Joined: 27 Jan 2009
  • Posts: 17
  • Location: Here
Reply with quote
Post Posted: Thu Jan 03, 2019 5:50 pm
Maxim wrote
We will move to HTTPS one day, but we lack expertise and experience in this area.

Look into "Let's Encrypt". If you just log into your web host and check, it's probably a setting you can enable, at least it was for me. Took like 1 minute. I'm pretty sure it's why Chrome now requires https/SSL for all web traffic. They will also drop this site's ranking big time without it.
  View user's profile Send private message Visit poster's website
  • Site Admin
  • Joined: 19 Oct 1999
  • Posts: 14690
  • Location: London
Reply with quote
Post Posted: Thu Jan 03, 2019 8:30 pm
We already have that, but there's a bit more work needed to migrate as we need to ensure all content links are changed to match.
  View user's profile Send private message Visit poster's website
  • Joined: 27 Jan 2009
  • Posts: 17
  • Location: Here
Reply with quote
Post Posted: Fri Jan 04, 2019 12:51 am
Gotcha. I just tried adding the "s" to http and it served the page just fine. Good luck with the content migration.
  View user's profile Send private message Visit poster's website
  • Joined: 28 Jan 2019
  • Posts: 1
Reply with quote
Post Posted: Mon Jan 28, 2019 7:22 pm
Implementing an SSL certificate is VERY straight forward, There is nothing to migrate. Get your host to apply the certificate they should automatically copy your content to the new secure area. Then ensure you set up a htacces file with appropriate 301 redirects from http to https. The content remains unchnaged
  View user's profile Send private message
  • Site Admin
  • Joined: 19 Oct 1999
  • Posts: 14690
  • Location: London
Reply with quote
Post Posted: Mon Jan 28, 2019 8:25 pm
Avoiding mixed content is problematic.
  View user's profile Send private message Visit poster's website
Reply to topic



Back to the top of this page

Back to SMS Power!