mdshooters.com SSL certificate

[LCPIWB]

bump

 

[CypherPunk]

Yeah it all depends on the location.. Was just saying. I've done work at locations that just flat out block HTTPS.. It makes NO sense, you can't even do banking - but they do it.. lol



I'd just leave HTTP available for those that need it.

They block SSL traffic because they can't read it and see what you are sending and receiving.

They want to know if your following Kim Jong Il's Twitter feed or forwarding sensitive information to HRC.

 

[lonzo]

They block SSL traffic because they can't read it and see what you are sending and receiving.

They want to know if your following Kim Jong Il's Twitter feed or forwarding sensitive information to HRC.

https://youtu.be/n5diMImYIIA

 

[chevellenut71]

Probably should not be on MDS during work hours.

What is MDS?

 

[LCPIWB]

What is MDS?

Don't know if you are joking or not.
Will assume not.

www.[B]MDS[/B]hooters.com

 

[texkev]

SSL cert, were was it used again? I have never seen one used on a forum before...

 

[LCPIWB]

SSL cert, were was it used again? I have never seen one used on a forum before...

www.mdshooters.com was using an expired (2013) SSL certs until you guys did the upgrade.

Considering you can get a certificate for free, I don't really understand the aversion to installing an SSL certificate for those who feel more comfortable browsing over https. Not saying you have to force https, as some have mentioned it can cause issues for them. But some of use would feel more comfortable if our username and password were not passed in the clear if we happen to be sitting in a Panera or starbucks using the wifi.

 

[CypherPunk]

www.mdshooters.com was using an expired (2013) SSL certs until you guys did the upgrade.



Considering you can get a certificate for free, I don't really understand the aversion to installing an SSL certificate for those who feel more comfortable browsing over https. Not saying you have to force https, as some have mentioned it can cause issues for them. But some of use would feel more comfortable if our username and password were not passed in the clear if we happen to be sitting in a Panera or starbucks using the wifi.

Where are long term, globally publicly trusted SSL certs issued without cost?

 

[LCPIWB]

Well, https://letsencrypt.org meets the Globally Publicly Trusted requirement, as for the long term.... If you install the tool from letsencrypt.org it will auto-renew every 90days.

 

[CypherPunk]

Well, https://letsencrypt.org meets the Globally Publicly Trusted requirement, as for the long term.... If you install the tool from letsencrypt.org it will auto-renew every 90days.

So they only offer "free" 90 day certs, and if you want to "auto renew" you have to install and run their script, and it only works on Apache on a Linux box?

Wouldn't it be easier to have you donate a 3 year publicly trusted, extended validation SSL cert and be done with it?

 

[texkev]

The cert issue has nothing to do with money... It just is never done on forums thus I have to make sure it will not adversely affect anything, whether it did in the past or not. Let me check with someone and will post back. I have no issues at all with it. I understand feeling more comfortable browsing. thanks for the feedback, will post back.

 

[babalou]

Even Google is using HTTPS now. My thing is that it is just not the forum itself, but all the PMs, other personal information, etc.

 

[smdub]

Everything is going https (which is good.) Even google said they will start lowering search results on sites that don't support it. FWIW, I'd prefer to browse to MDS securely if given the choice.

 

[TheBert]

Everything is going https (which is good.) Even google said they will start lowering search results on sites that don't support it. FWIW, I'd prefer to browse to MDS securely if given the choice.

HTTPS is only going to secure the communications between your browser and the web server. Your browser and the web server will still record your activity just like they do now. The tracking cookies will still exist, your history will still exist, nefarious people will still be able to get on your computer and the web server system to obtain your information.

 

[smdub]

I run plenty of add-ons in my browsers to block all cookies, js, flash, etc. A secure communication channel is only part of the total solution but its a *BIG* part.

 

[texkev]

The cert wins.... Turns out there would only be 2 issues, of which can be totally fixed when or if needed. Will have it installed soon

 

[CypherPunk]

Will you make Tapatalk default to https?

Will we now have a green (EV) bar?

Will it be a wildcard cert that will apply to all the MDS domain names?

What about Shooters Discount? I understand SSL is one of many technologies and ideologies blocked there.

 

[texkev]

FYI all the ssl cert will be going up today/tomorrow
requires and IP change so flush dns or reboot, etc if you see site error/down.
error may look like this
https://www.nptech.com/wp-content/uploads/2013/02/DefaultSite.jpg
or this cant remember
https://blog.pclewis.com/wp-content/uploads/2010/01/2010-01-18-142121_765x589_scrot.png

 

[LCPIWB]

FYI all the ssl cert will be going up today/tomorrow
requires and IP change so flush dns or reboot, etc if you see site error/down.
error may look like this
https://www.nptech.com/wp-content/uploads/2013/02/DefaultSite.jpg
or this cant remember
https://blog.pclewis.com/wp-content/uploads/2010/01/2010-01-18-142121_765x589_scrot.png

Thank you.. Looking forward to it.

Attention all you geeks who added the IP address in your hosts file, you will need to update.

 

[texkev]

Thank you.. Looking forward to it.

Attention all you geeks who added the IP address in your hosts file, you will need to update.

64.140.160.211 is the new ip