Computer Hope
Software => Computer viruses and spyware => Topic started by: BellaUSA on March 17, 2017, 02:38:15 PM
-
C.Hope not secure. Think I'll check out of this website. Too many users have had their passwords compromised....right ?!
-
C.Hope not secure. Think I'll check out of this website. Too many users have had their passwords compromised....right ?!
No.
Can you verify your claim?
What is my password?
-
What are you talking about?
-
Firefox's new version lets us know when a login page isn't secure. C.Hope is just one of many. Just checking, ok !
And I'm still here...so I must have some loyalty to a computer help site that's always been of help. :o
-
What glue are you sniffing?
Computer hope s not, has not been a money transaction site.
Even so, your password is not visible to most users.
-
You need to get a grip.
-
Firefox's new version lets us know when a login page isn't secure.
Ah, now they are making sense. They are talking about The new Firefox "Warning" regarding SSL. Any website with a login page that doesn't support SSL shows a warning that says "Login's entered here could be compromised". This feature is the brainchild of complete idiots who apparently spend all their time in a padded room mumbling to themselves about how "There's a man in the middle!".
Another fun result of this feature: Firefox won't autofill any forms or logins on websites that don't use SSL.
Chrome is coming out with a similar feature next week.
The feature can be disabled (in Firefox). I think it's idiotic, however; Not because it's bad but because it's a solution for a particular problem that has been painted as a cure-all. These efforts to make a "secure web" seem to be focusing on technological solutions rather than human ones. No amount of SSL certifications are going to prevent a unfamiliar user from entering their SSN into a website pop-up that asks "The Internet needs your SSN ma'am" or from clicking on that attachment from a "failed UPS Delivery".
-
Thinks BC. I would have said that.
Giving people better Band-Aid does not really solve the problem.
BTW, the company that makes actual Band-Aids has a product line for young children to help them adjust mentally to the idea of having a Band-Aid.
Maybe this will make the OP eel better about Computer Hope...
(https://www.band-aid.com/sites/bandaid_us/files/styles/tout_image/public/header-page-1-2.png?itok=3Zh3WI92)
I would go for the Mickey Mouse. :D
-
This browser change did get me thinking about supporting SSL myself so now my site supports https as well. Not fully on the website end as it still complains about images not being accessed via https, but I'm fine with that- I'm also leaving http:// as the default redirector (eg going to the main domain even with https:// goes to my blog with http://) until I'm confident it isn't going to blow up on me.
Not sure if that was 1-2 hours well spent fiddling with my VPS over SSH but I'm sure it loved the attention.
Coincidentally, Computerhope does actually support ssl, and seems to do it the same way as I ended up doing it.
https://computerhope.com goes to http://computerhope.com
but, if you go straight to https://computerhope.com/forum you get a secure version of the site.
-
From here I can not make a SSL connection to computer hope.
Here are some HTTPS sites I might use:
https://pay.ebay.com/ - Only SSL when making purchase.
https://www.bankofthewest.com/ - NOT my bank
https://www.xfinity.com/ - My ISP
https://www.amazon.com/ - videos and buying
https://mail.google.com/ - get my gmail
All of the above have reason to protect your information.
But not all web sites require one to post frank personal information.
You can change your personal information on this page. This information will be displayed throughout Computer Hope. If you aren't comfortable with sharing some information, simply skip it - nothing here is required.
So, the lack of SSL does not present a problem unless something in your personal profile could be harmful in the wrong hands. (Like you were a former member of an organized crime cartel and you changed your name and left.)
But the great danger to privacy secularity are not technological. The real problem problem is about morality, the law and respect for other people. :)
-
From here I can not make a SSL connection to computer hope.
I mistyped, has to be https://www.computerhope.com/forum/ without the www redirects to the http site.
I'm going to disagree. While I would certainly agree that things like E-mail, banks, or online stores like say Amazon benefit far more to the consumer by using SSL/HTTPS, sites like these still benefit because login details are not communicated in plaintext- not to mention the other advantages.
Logging in to CH via a http connection means that your username password could be compromised by a MITM attack. Also, many trojans and other malware that sit in the background watch for logins by snooping network traffic, HTTPS can still keep login details safe. It also means you cannot be "watched" while changing the password.
The idea behind it is that it is no longer up to the judgement of website creators what user information is actually sensitive. It prevents not only your information (as a user of the site) from being inspected, but it prevents it from being changed on it's way to you; adware can sometimes inject advertisements or links inside of pages viewed in the browser, such things would cause SSL Certificate failures which would prevent the page from loading and instantly allow users to know something is amiss.
But the great danger to privacy/security are not technological. The real problem is about morality, the law and respect for other people.
I'd argue the opposite. I'd say the greatest danger to security and privacy on the Internet are overly optimistic firms who follow that credo.
Microsoft followed that with ActiveX. ActiveX components on the web provided unparalleled power to web developers. In their optimism they didn't consider that maybe providing web developers with the ability to run arbitrary, unsandboxed binary code on the local machine was a bad idea.
It's sort of the Internet version of "Oh, I remember back in the day things were different, nobody ever locked their doors and we didn't live in constant fear", which is complete bollocks as well anyway for reasons not worth going into here.
-
Now that I've stirred everyone up about security, i can go about my day & see who else to excite..........