...
but it sounds like you want to make my choice for me. THAT is where I get really annoyed.
I just don't see the value.
I just don't see the value.
I suppose you are payed by you know who.
I made a some changes to nginx which fixes the majority of the SSL issues for those of you that insist on using it.
...
On HTTPS: It's a forum. It's public. If you have even remotely good password habits (not reusing things which matter), getting your login credentials stolen is not a big deal. And who sends secret things via the PM system? Really? No, there'd be a ton of other things I'd have liked to see fixed here before full HTTPS support even entered into it.
...
I think ovnr is right. This is just a forum. Communication here is for public to read even without password - so securing message from eavesdrop is pointless. As to the log-on part, I can't imagine a scenario here where someone would stole a password just to post a note or read the personal message here.
Besides, why waste resources. Two kinds of resource:
1. Don't care what broadband you use, there is always an upper limit on speed, be it net or CPU; Encryption will use more data-bandwidth. If your connection is by volume, it will hurt.
2. Some servers (PC's, smartphones, etc.) somewhere is going to burn cycle (ie:electrical power) just to deal with the overhead in transmit, encrypt, and decrypt things that is open and public.
It will be a stupid waste of resources and added trouble for admin or users for no good reason.
...
forgive me if I offend, but I'm guessing you know nothing about american isp's and the monopoly they now have. almost none of us, now, can choose our isp anymore! the local governments sign contracts - exclusive ones! - that lock us into ONE isp per area.
...
in fact, I run a vpn, daily, and this hides what I do from my isp (comcast). and yet, when I run the vpn, I find that my connection is killed after a few hours, requiring the modem to be rebooted. when I was not using the vpn, this didn't happen. comcast is hostile to non-business users and employs dpi and is damned proud of it. my vpn thwarts that and it pisses them off. so, they try to punish me. of course, I have a work-around (auto detection of my default router being unpingable and then I launch a job to reboot the modem, log the event and carry on). but still, they are hostile toward vpn users. should I switch isp's? of course. but CAN I? not really.
...
do you see the difference between being able to come to the forum with posts already in-place - versus being able to track each user by his ip-addr, place and time?
my isp does not know what username I login as (assuming I'm running ssl as a transport). they can surely visit the forum all they want, but I've limited what they can know about ME, their customer, by running ssl over the wire. they probably have no idea what forums I visit, what I say, what my thoughts are, what my preferences are, etc. and I like it that way!
...
I see no reason to make anything easier for those who make it their business to spy and track people in everything they do. at least I remove the realtime tracking that they want and so, I've raised the bar in the amount of effort they'd have to go thru to create history on me.
I know that you don't care and that you don't 'get it'; but at least allow those of us who do want to limit what the spies know about us to have our way, especially when it does not affect you in any way, shape or form. you lose nothing by allowing us our privacy. you should actually have no say in the matter, in fact; since you have chosen not to avail yourself of any privacy online. you made your choice. let us make ours the way we want to.
The forum is not reachable over https any more.
The forum is not reachable over https any more.I can confirm that. It started about 4 days ago.
That coincides with me turning off cloudflare. Just turned it back on now.
BTW, I still don't understand why anyone wants to access the site using https? Why does it matter?
The forum is not reachable over https any more.I can confirm that. It started about 4 days ago.BTW, I still don't understand why anyone wants to access the site using https? Why does it matter?
but for those of us who do want our comms to be unsniffable, defeating our ISP's snooping, denying them insight into what sites we visit,
and also denying them the ability to INJECT THEIR OWN ADS and mess up the content along the way - it does matter to us!
but for those of us who do want our comms to be unsniffable, defeating our ISP's snooping, denying them insight into what sites we visit,
The only way to do that is to use a secure proxy, and then the proxy owners know exactly what site you're visiting anyway so you're only moving the problem, not fixing it. The internet wasn't designed to keep that sort of thing secret.Quoteand also denying them the ability to INJECT THEIR OWN ADS and mess up the content along the way - it does matter to us!
Wait, wtf? American ISPs actually do that? Hope you get a discount on your service for it.
and yes, they are starting to inject ads. look up a bit where I posted such a link, a few months ago, about wireless carriers getting caught doing this (att and verizon). comcast is also doing this, or starting to.