Craftland.org

Craftland.org
http://forum.craftland.org/

https

http://forum.craftland.org/viewtopic.php?f=12&t=6576

Page 1 of 1

https

Posted: Mon Nov 28, 2016 11:19 pm
by Hampton
There is no https to the main site.

Re: https

Posted: Tue Nov 29, 2016 12:32 am
by nickmcski
Well, not not like there is very sensitive information. I cant see the justification of purchasing an SSL certificate for it. I think the money is better spent elsewhere

Re: https

Posted: Tue Nov 29, 2016 12:44 am
by Hampton
Cloudflare gives free https...

I use it for https://zorgtech.org" onclick="window.open(this.href);return false;

Re: https

Posted: Tue Nov 29, 2016 12:47 am
by nickmcski
Pi3 wrote:Cloudflare gives free https...

I use it for https://zorgtech.org" onclick="window.open(this.href);return false;
Its shared SSL though, you are sharing the same private key with multiple other websites

Code: Select all

DNS Name=sni233538.cloudflaressl.com
DNS Name=*.beatyouneed.com
DNS Name=*.brenalaneder.ga
DNS Name=*.bridgevar.tk
DNS Name=*.freedomsfinalstand.com
DNS Name=*.getsquared.xyz
DNS Name=*.heidicarter.com
DNS Name=*.herohamp.xyz
DNS Name=*.life180.com
DNS Name=*.lifeinsuranceinvermont.com
DNS Name=*.marcinklimek.pl
DNS Name=*.movewelllivefree.com
DNS Name=*.ontheinterwebs.tk
DNS Name=*.rottenlemonawards.com
DNS Name=*.tansrahytheartprot.gq
DNS Name=*.dörrtillbehör.nu (*.xn--drrtillbehr-rfbj.nu)
DNS Name=*.zorgtech.org
DNS Name=beatyouneed.com
DNS Name=brenalaneder.ga
DNS Name=bridgevar.tk
DNS Name=freedomsfinalstand.com
DNS Name=getsquared.xyz
DNS Name=heidicarter.com
DNS Name=herohamp.xyz
DNS Name=life180.com
DNS Name=lifeinsuranceinvermont.com
DNS Name=marcinklimek.pl
DNS Name=movewelllivefree.com
DNS Name=ontheinterwebs.tk
DNS Name=rottenlemonawards.com
DNS Name=tansrahytheartprot.gq
DNS Name=dörrtillbehör.nu (xn--drrtillbehr-rfbj.nu)
DNS Name=zorgtech.org
It is better than nothing, but proper SSL costs a reasonable amount of money.

Plus its not very high risk, I doubt many of our users would be targeted for a man in the middle attack.

Re: https

Posted: Tue Nov 29, 2016 1:27 am
by Hampton
nickmcski wrote:
Pi3 wrote:Cloudflare gives free https...

I use it for https://zorgtech.org" onclick="window.open(this.href);return false;
Its shared SSL though, you are sharing the same private key with multiple other websites

Code: Select all

DNS Name=sni233538.cloudflaressl.com
DNS Name=*.beatyouneed.com
DNS Name=*.brenalaneder.ga
DNS Name=*.bridgevar.tk
DNS Name=*.freedomsfinalstand.com
DNS Name=*.getsquared.xyz
DNS Name=*.heidicarter.com
DNS Name=*.herohamp.xyz
DNS Name=*.life180.com
DNS Name=*.lifeinsuranceinvermont.com
DNS Name=*.marcinklimek.pl
DNS Name=*.movewelllivefree.com
DNS Name=*.ontheinterwebs.tk
DNS Name=*.rottenlemonawards.com
DNS Name=*.tansrahytheartprot.gq
DNS Name=*.dörrtillbehör.nu (*.xn--drrtillbehr-rfbj.nu)
DNS Name=*.zorgtech.org
DNS Name=beatyouneed.com
DNS Name=brenalaneder.ga
DNS Name=bridgevar.tk
DNS Name=freedomsfinalstand.com
DNS Name=getsquared.xyz
DNS Name=heidicarter.com
DNS Name=herohamp.xyz
DNS Name=life180.com
DNS Name=lifeinsuranceinvermont.com
DNS Name=marcinklimek.pl
DNS Name=movewelllivefree.com
DNS Name=ontheinterwebs.tk
DNS Name=rottenlemonawards.com
DNS Name=tansrahytheartprot.gq
DNS Name=dörrtillbehör.nu (xn--drrtillbehr-rfbj.nu)
DNS Name=zorgtech.org
It is better than nothing, but proper SSL costs a reasonable amount of money.

Plus its not very high risk, I doubt many of our users would be targeted for a man in the middle attack.

So the password I use for craftland should be sniffed?

"changes craftland password"

Re: https

Posted: Tue Nov 29, 2016 2:42 am
by nickmcski
herohamp wrote:
nickmcski wrote:
Pi3 wrote:Cloudflare gives free https...

I use it for https://zorgtech.org" onclick="window.open(this.href);return false;
Its shared SSL though, you are sharing the same private key with multiple other websites

Code: Select all

DNS Name=sni233538.cloudflaressl.com
DNS Name=*.beatyouneed.com
DNS Name=*.brenalaneder.ga
DNS Name=*.bridgevar.tk
DNS Name=*.freedomsfinalstand.com
DNS Name=*.getsquared.xyz
DNS Name=*.heidicarter.com
DNS Name=*.herohamp.xyz
DNS Name=*.life180.com
DNS Name=*.lifeinsuranceinvermont.com
DNS Name=*.marcinklimek.pl
DNS Name=*.movewelllivefree.com
DNS Name=*.ontheinterwebs.tk
DNS Name=*.rottenlemonawards.com
DNS Name=*.tansrahytheartprot.gq
DNS Name=*.dörrtillbehör.nu (*.xn--drrtillbehr-rfbj.nu)
DNS Name=*.zorgtech.org
DNS Name=beatyouneed.com
DNS Name=brenalaneder.ga
DNS Name=bridgevar.tk
DNS Name=freedomsfinalstand.com
DNS Name=getsquared.xyz
DNS Name=heidicarter.com
DNS Name=herohamp.xyz
DNS Name=life180.com
DNS Name=lifeinsuranceinvermont.com
DNS Name=marcinklimek.pl
DNS Name=movewelllivefree.com
DNS Name=ontheinterwebs.tk
DNS Name=rottenlemonawards.com
DNS Name=tansrahytheartprot.gq
DNS Name=dörrtillbehör.nu (xn--drrtillbehr-rfbj.nu)
DNS Name=zorgtech.org
It is better than nothing, but proper SSL costs a reasonable amount of money.

Plus its not very high risk, I doubt many of our users would be targeted for a man in the middle attack.

So the password I use for craftland should be sniffed?

"changes craftland password"
Its the same as most websites, thats why all IT people tell you to use separate passwords on every website. Most people are more likely to get caught in a fishing scam or a database hack then a man in the middle attack.
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/