It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Thank you.
Some features of ATS will be disabled while you continue to use an ad-blocker.
Upgrade the site to be served via https
page: 14
share:
I'm astonished to see that this site, a conspiracy site etc, a home for the paranoid etc would be served via unencrypted HTTP only.
I was going through my saved passwords to delete stuff I don't use anymore and remembered this site.
I believe no one has not heard of the Snowden revelations and how the NSA and others are saving every bit of traffic that is transfered over the internet. But they can't, at least not easily, decode encrypted traffic.
Also encrypted traffic, via https, also verifies that the content that came from one source is authentic and has not been tampered with.
Whereas unencrypted traffic like coming from this site right now is.. let's put it like this, if the NSA would be interested in targeting anyone as a man-in-the-middle attacker, which they're absolutely capable of doing, a website like this would be a good source.
In the past one might've said, "Hey a x509 certificate is expensive, we don't have the money". There's letencrypt. It's mature, automated and free.
You could also say, "Our webserver can't handle the load", to which I'd say "Don't host on a potato". I get it, PHP is a slow language that doesn't scale very well, but I believe the secrecy of your user's password is more important than neglible overhead via https enryption.
Well, of course one should use a dedicated password for every new location. But the reality is different. People are still using the same password for multiple sites. I wouldn't be surprised if you even stored those passwords in clear text, given that the need to encrypt the traffic between your server and your visitors is not being done.
I don't think I have to explain any more. https should be default, always.
I was going through my saved passwords to delete stuff I don't use anymore and remembered this site.
I believe no one has not heard of the Snowden revelations and how the NSA and others are saving every bit of traffic that is transfered over the internet. But they can't, at least not easily, decode encrypted traffic.
Also encrypted traffic, via https, also verifies that the content that came from one source is authentic and has not been tampered with.
Whereas unencrypted traffic like coming from this site right now is.. let's put it like this, if the NSA would be interested in targeting anyone as a man-in-the-middle attacker, which they're absolutely capable of doing, a website like this would be a good source.
In the past one might've said, "Hey a x509 certificate is expensive, we don't have the money". There's letencrypt. It's mature, automated and free.
You could also say, "Our webserver can't handle the load", to which I'd say "Don't host on a potato". I get it, PHP is a slow language that doesn't scale very well, but I believe the secrecy of your user's password is more important than neglible overhead via https enryption.
Well, of course one should use a dedicated password for every new location. But the reality is different. People are still using the same password for multiple sites. I wouldn't be surprised if you even stored those passwords in clear text, given that the need to encrypt the traffic between your server and your visitors is not being done.
I don't think I have to explain any more. https should be default, always.
a reply to: itsthatsow
If you look through Board Business this has been brought up and explained before.
If you look through Board Business this has been brought up and explained before.
originally posted by: Atsbhct
a reply to: itsthatsow
If you look through Board Business this has been brought up and explained before.
Link to the thread?
new topics
-
Where should Trump hold his next rally
Politicians & People: 3 minutes ago -
Shocking Number of Voters are Open to Committing Election Fraud
US Political Madness: 47 minutes ago -
Gov Kristi Noem Shot and Killed "Less Than Worthless Dog" and a 'Smelly Goat
2024 Elections: 1 hours ago -
Falkville Robot-Man
Aliens and UFOs: 1 hours ago -
James O’Keefe: I have evidence that exposes the CIA, and it’s on camera.
Whistle Blowers and Leaked Documents: 2 hours ago -
Australian PM says the quiet part out loud - "free speech is a threat to democratic dicourse"...?!
New World Order: 3 hours ago -
Ireland VS Globalists
Social Issues and Civil Unrest: 3 hours ago -
Biden "Happy To Debate Trump"
2024 Elections: 4 hours ago -
RAAF airbase in Roswell, New Mexico is on fire
Aliens and UFOs: 4 hours ago -
What is the white pill?
Philosophy and Metaphysics: 5 hours ago
top topics
-
A Warning to America: 25 Ways the US is Being Destroyed
New World Order: 14 hours ago, 21 flags -
Blast from the past: ATS Review Podcast, 2006: With All Three Amigos
Member PODcasts: 6 hours ago, 11 flags -
Mike Pinder The Moody Blues R.I.P.
Music: 6 hours ago, 8 flags -
Biden "Happy To Debate Trump"
2024 Elections: 4 hours ago, 8 flags -
James O’Keefe: I have evidence that exposes the CIA, and it’s on camera.
Whistle Blowers and Leaked Documents: 2 hours ago, 5 flags -
What is the white pill?
Philosophy and Metaphysics: 5 hours ago, 5 flags -
Australian PM says the quiet part out loud - "free speech is a threat to democratic dicourse"...?!
New World Order: 3 hours ago, 5 flags -
Ireland VS Globalists
Social Issues and Civil Unrest: 3 hours ago, 4 flags -
RAAF airbase in Roswell, New Mexico is on fire
Aliens and UFOs: 4 hours ago, 4 flags -
Putin, Russia and the Great Architects of the Universe
ATS Skunk Works: 9 hours ago, 3 flags
4