12-23-2019, 04:09 AM
#1
User Info
I'm getting a warning in Chrome that this site (shavenook.com) is not secured, Firefox and Microsoft Edge give the same warning. I think it should be secure to comply with the most recent web/browser standards. In most cases it's installing a valid SSL certficate.
[Image: fRsBLDR.png]

0 80
Reply
 12-23-2019, 06:18 AM
#2
  • bullgoose
  • The Enabler
  • Redondo Beach, California, U.S.A
User Info
We do not have a payment gateway and, we do not store any personal information.

52 21,233
Reply
 12-23-2019, 06:39 AM
#3
User Info
To follow up on What Phil said, with a bit more technical detail, see the relevant part of a previous thread here: http://shavenook.com/showthread.php?tid=...#pid874591

3 6,842
Reply
 12-23-2019, 09:40 AM
#4
User Info
Interesting. I am using Microsoft Edge today and it does NOT give me the same warning OP has received. However, I do receive this warning on other sites (shaving and non-shaving) occasionally.

17 390
Reply
 12-23-2019, 09:46 AM
#5
User Info
FWIW, I don't care if this site is not secure.  If someone wants to hack it and talk to me about shaving, so be it.

98 968
Reply
 12-23-2019, 09:55 AM
#6
User Info
(12-23-2019, 09:46 AM)chromedometone Wrote: FWIW, I don't care if this site is not secure.  If someone wants to hack it and talk to me about shaving, so be it.

Lol

0 60
Reply
 12-23-2019, 10:53 AM
#7
User Info
There are also some other benefits, because you can use HTTP/2 which makes the site faster. It also improved your Google ranking.
And no one can intercept what's happening between my browser and your servers for example, it's much harder to do man-the-middle attacks. Would you like to be responsible for a man-in-the-middle-attach where someone throws non-secure content into your website and hacks lots of people with malicious content, all that can happen when you don't have an SSL secured website. When using an non-secure HTTP protocol anyone can intercept that between my browser and your servers, there is no backdoor needed.

0 80
Reply
 12-23-2019, 11:53 AM
#8
User Info
Why do we think that this site would even be targeted in a MITM attack? It’s possible, but not probable as there is little to be gained. Adding a HTTPS cert to this site would be like wearing a seatbelt whilst you sit on the couch.

36 1,974
Reply
 12-23-2019, 12:11 PM
#9
User Info
We should not underestimate the hacking prowess of teens in Eastern Europe, first shaving sites then who knows...

The seatbelt on the couch idea intrigues me. If I had a great Dane this might work.

63 1,684
Reply
 12-23-2019, 12:37 PM
#10
  • chazt
  • Senior Member
  • Queens, NY
User Info
What is this “man in the middle?”

15 3,951
Reply
 12-23-2019, 01:22 PM
#11
User Info
(12-23-2019, 12:37 PM)chazt Wrote: What is this “man in the middle?”

See Wikipedia's article on "Man-in-the-middle attack".

3 6,842
Reply
 12-23-2019, 03:25 PM
#12
User Info
(12-23-2019, 01:22 PM)WegianWarrior Wrote:
(12-23-2019, 12:37 PM)chazt Wrote: What is this “man in the middle?”

See Wikipedia's article on "Man-in-the-middle attack".


yikes, this may make me go off the grid

63 1,684
Reply
 12-23-2019, 03:29 PM
#13
  • chazt
  • Senior Member
  • Queens, NY
User Info
(12-23-2019, 01:22 PM)WegianWarrior Wrote:
(12-23-2019, 12:37 PM)chazt Wrote: What is this “man in the middle?”

See Wikipedia's article on "Man-in-the-middle attack".

Thanks for the link. It seems to have the potential to enable sinister people engage in fiendish and malevolent acts.

15 3,951
Reply
 12-23-2019, 05:09 PM
#14
User Info
I have never gotten this message and I use an iPhone, iPad and MacBook to access the site, most home wireless setups have a firewall so I don’t worry

7 1,748
Reply
 12-24-2019, 10:22 AM
#15
User Info
Don't reuse your password on this site for anything else.  It's fairly easy to steal over a non-secure connection.  Not reusing passwords is always good advice though.  If keeping up with a lot of password is too much to handle, a password manager can help keep track of all of them.

0 7
Reply
Users browsing this thread: 1 Guest(s)