Not secure / Unsecure Connection message at login / HTTPS

[crystaltony]

Not sure if this question has been raised before but hoping for some advice or answers.


I am using Firefox as my private browser and when logging in to VEF, a popup appears stating "This connection is not secure. Logins entered here could be compromised".


I am wondering if I should be concerned about this, and if so, is there a solution.


I also occasionaly use Opera for private browsing and a similar message stating "not secure" appears alongside the VPN button.


As security on the web is of paramount importance, I would be pleased to hear your comments.

[mucowag]

It's because this forum has yet to upgrade to HTTPS security, which would encrypt
our log-in information.
Long overdue IMO.

[Jenny48549]

This version of VB does not support https protocol from what I was told.

We have to wait for an upgrade.

[pharoahegypt]

Quote:

Originally Posted by crystaltony

Not sure if this question has been raised before but hoping for some advice or answers.


I am using Firefox as my private browser and when logging in to VEF, a popup appears stating "This connection is not secure. Logins entered here could be compromised".


I am wondering if I should be concerned about this, and if so, is there a solution.


I also occasionaly use Opera for private browsing and a similar message stating "not secure" appears alongside the VPN button.


As security on the web is of paramount importance, I would be pleased to hear your comments.

If your service provider is BT, then it's a problem their end, as I get it regularly. It's not this site, but their lack of a durable connection. Happens to all isp's as their customer base grows.

[halvar]

This message is displayed by Firefox if you enter data on non https sites. The data you enter and view is transmitted unencrypted. Somebody that listens to your Internet traffic ('man in the middle') can easily read and manipulate data.

But we all have nothing to hide, or do we?

As for this site: It doesn't really bother me.
But what you should never do: Reuse passwords for different sites!

Maybe the stakes are higher for admin/mod accounts. They are more valuable and could benefit from additional protection.

[buttsie]

Why Does Google Chrome Say Websites Are “Not Secure”?

https://www.howtogeek.com/359298/why...cure%E2%80%9D/

From July, Chrome will name and shame insecure HTTP websites

https://www.theregister.co.uk/2018/0...me_http_shame/


No such thing as 100% secure online

Very good in depth over view on this site -might be outdated but it shows secure becomes insecure
as the bad guys find the next exploit

Mitigating Vulnerabilities

As with any security protocol there is always someone looking to break it. Several attacks against SSL/TLS (https?) have surfaced in recent years, namely BEAST, CRIME and BREACH. These could all result, in one way or another, the data you send over a secure connection not being so secure. Whilst these vulnerabilities can be countered to a satisfactory standard on the server side, or by updating to the latest browser in some cases, this does not mean that you're safe. Even if you pay close attention to keeping your software up to date, you have no information on whether or not a site has taken measures to patch these flaws. You still get your green https in the address bar and continue on because all appears to be safe.

2014
https://scotthelme.co.uk/ssl-does-not-make-site-secure/

I'm pretty sure the above was in response to this in 2012
https://en.wikipedia.org/wiki/Heartbleed

[skybluepink200]

I'm browsing in Safari on a Mac. I upgraded to the latest version yesterday, along with all other outstanding software upgrades. Now when browsing VEF I get a Not Secure message in front of the url in the URL line - normally there's a padlock symbol for secure sites. Not seen this before, and for all other sites using https or similar it still works fine still showing the padlock symbol. Seems just associated with VEF.

I can login to VEF and post and browse fine, but this looks odd. Any ideas? Security certificate out of date? Anyone seen this with other browsers recently?

[buttsie]

Previous topic

http://vintage-erotica-forum.com/sho...secure+message

If you google your topic title you'll get articles on it for Safari

https://support.apple.com/en-au/HT208672

[skybluepink200]

Thanks - I will continue to ignore it as I have been all weekend then!

[YxjwEn46G]

Hi,

could vintage erotica forum start using https?
I would say it's standard nowadays.