UPDATE: Forum set up with secure SSL

Discussions about the forum. How to expand and enhance it.

UPDATE: Forum set up with secure SSL

Postby plexus » 2016-Nov-Wed-02-Nov

The forum will be updated to use secure SSL and https will be enabled. The two screen shots below tell the story. I've initiated the process. please email me at admin@printrbottalk.com if you find the forum is not working as I do not monitor it every day.

thanks
plexus
  • 0

Attachments
Screen Shot 2016-11-16 at 2.19.12 AM.png
Screen Shot 2016-11-16 at 2.19.12 AM.png (116.91 KiB) Viewed 689 times
Screen Shot 2016-11-16 at 2.15.58 AM.png
Screen Shot 2016-11-16 at 2.15.58 AM.png (100.62 KiB) Viewed 689 times
User avatar
plexus
Site Admin
 
Posts: 2112
Joined: 2011-Dec-Mon-16-Dec
Location: Toronto, Canada
Reputation: 95

UPDATE: Forum set up with secure SSL

Sponsor

Sponsor
 

Re: UPDATE: Forum set up with secure SSL

Postby Mooselake » 2016-Nov-Wed-10-Nov

Now all our posts can flit through the Internet as gibberish, and the NSA will need to read directly from the site!

Of course I'm skeptical of this encrypt everything movement...

Does this mean you're switching hosts?

Kirk
  • 0

Modified KickStarter Classic Plus 7/2012
KS Thingybot Delta Pro 10/31/16
User avatar
Mooselake
My next printer is...
 
Posts: 3431
Joined: 2011-Dec-Tue-23-Dec
Location: Moose Swamp, Upper Michigan, USA
Reputation: 167

Re: UPDATE: Forum set up with secure SSL

Postby PxT » 2016-Nov-Wed-14-Nov

With Let's Encrypt offering free & trusted certificates there really is no reason NOT to enable HTTPS and Dreamhost makes it very easy.

HTTPS connection is working fine here but most browsers won't display the lock icon in the address bar because you're loading some insecure content. Looks like the culprit is wiki_link.png which is included on every page and is hard-coded to http. You should make sure every resource is loaded using a relative URL, or using https if you are pulling in off-site scripts (such as Google analytics, etc)
  • 0

User avatar
PxT
Print complete...
 
Posts: 1326
Joined: 2011-Dec-Mon-16-Dec
Location: Sacramento, CA
Reputation: 96

Re: UPDATE: Forum set up with secure SSL

Postby plexus » 2016-Nov-Wed-14-Nov

PxT wrote:With Let's Encrypt offering free & trusted certificates there really is no reason NOT to enable HTTPS and Dreamhost makes it very easy.

HTTPS connection is working fine here but most browsers won't display the lock icon in the address bar because you're loading some insecure content. Looks like the culprit is wiki_link.png which is included on every page and is hard-coded to http. You should make sure every resource is loaded using a relative URL, or using https if you are pulling in off-site scripts (such as Google analytics, etc)


Excellent. Thanks for the valuable tip! I actually know very little about HTTPS but as you say Dreamhost made it easy. I will try and remedy this http link and may as you to test it when I get it sorted out.

PxT, if I can't sort out that png http issue, does that mean the whole site is not https compliant? In other words, is all this for nought if that link isn't made secure?

@moose - I'm not switching hosts. as PxT pointed out, Dreamhost has everything I/we need to make this happen with no cost (so far). The reason for doing this is because I don't want Tapatalk to become disabled and if Apple et al are requiring secure connections there may be other implications.
  • 0

User avatar
plexus
Site Admin
 
Posts: 2112
Joined: 2011-Dec-Mon-16-Dec
Location: Toronto, Canada
Reputation: 95

Re: UPDATE: Forum set up with secure SSL

Postby PxT » 2016-Nov-Wed-15-Nov

PxT, if I can't sort out that png http issue, does that mean the whole site is not https compliant? In other words, is all this for nought if that link isn't made secure?


Yes and no. I mean you really want the entire site to be https capable because then users will see the padlock symbol in their browser and will know that encryption is working properly. All is then right with the world and puppies and rainbows fall from the sky, etc. As it is right now they'll either see no padlock or a broken/disconnected padlock, depending on the browser. In practical terms the only thing being sent insecurely is that single wiki image file so it's not a massive problem, but users who don't understand this stuff inside and out won't know that -- they just see that the site isn't "secure".

As far as Tapatalk is concerned, I don't think it's loading the main UI anyway so that image file is probably irrelevant. I suspect it is hitting some XML or JSON feed somewhere to get the forum data (which is very likely to be served successfully over https). The only way to know is to try it and I don't use Tapatalk so I can't really help there unfortunately.
  • 0

User avatar
PxT
Print complete...
 
Posts: 1326
Joined: 2011-Dec-Mon-16-Dec
Location: Sacramento, CA
Reputation: 96


Return to Forum talk

Who is online

Users browsing this forum: No registered users and 1 guest