Jump to content



Not Secure?


  • You cannot reply to this topic
8 replies to this topic

#1 lorac61469

 

    Succubus

  • GS Member
  • PipPipPipPip
  • 792 posts
  • Gender:Not Telling
 

Posted 03 May 2019 - 11:41 AM

So Iíve noticed that when I visit the forums I get Not Secure-paranormalsoup.com at the top of the screen in the browser bar (I guess that what itís called).

Strange, Iíve never seen this before. Is it me or the website? Iím using an iPad.

#2 Vlawde

 

    Exorcism

  • GS Member
  • PipPipPipPipPipPipPipPipPipPip
  • 12,241 posts
  • Gender:Male
  • Location:Fair Oaks Ca
  • Interests:Music, games, movies, the paranormal
 

Posted 03 May 2019 - 12:42 PM

It's always been that way for me. All it really means is the URL doesn't have https:// in front of it and the padlock icon doesn't appear. Any website that deals in accepting payments always (or should) have this as a layer of security to keep payment and other sensitive info secure.

It doesn't mean this site is unsafe to post on. I use Chrome BTW
My Signature
Posted Image

#3 lorac61469

 

    Succubus

  • GS Member
  • PipPipPipPip
  • 792 posts
  • Gender:Not Telling
 

Posted 03 May 2019 - 01:21 PM

View PostVlawde, on 03 May 2019 - 12:42 PM, said:

It's always been that way for me. All it really means is the URL doesn't have https:// in front of it and the padlock icon doesn't appear. Any website that deals in accepting payments always (or should) have this as a layer of security to keep payment and other sensitive info secure.

It doesn't mean this site is unsafe to post on. I use Chrome BTW

Ok, thanks.

#4 Vlawde

 

    Exorcism

  • GS Member
  • PipPipPipPipPipPipPipPipPipPip
  • 12,241 posts
  • Gender:Male
  • Location:Fair Oaks Ca
  • Interests:Music, games, movies, the paranormal
 

Posted 03 May 2019 - 04:09 PM

I'm goofing off at work and visiting sites, and almost all have 'not secure'. Facebook and Twitter do have the https because monetary transaction take place on them
My Signature
Posted Image

#5 KlaineyGStudy

 

    Forum Manager

  • Root Admin
  • PipPipPipPipPipPipPip
  • 5,592 posts
  • Gender:Not Telling
 

Posted 03 May 2019 - 08:01 PM

Siguie had a good explanation why "Not Secure" is attached to the website and what it means exactly for our security, it has been attached for a while. I will try to find his post.
My Signature
Posted Image


Visit us here: Facebook or Twitter

#6 KlaineyGStudy

 

    Forum Manager

  • Root Admin
  • PipPipPipPipPipPipPip
  • 5,592 posts
  • Gender:Not Telling
 

Posted 03 May 2019 - 08:12 PM

In the meantime I found this explanation:

Quote

The latest version of the Google Chrome browser, version 68, introduced a new “Not Secure” warning in the address bar that appears anytime you are visiting an insecure web page.The warning refers to the lack of security for the connection to that page. It’s alerting you that information sent and received with that page is unprotected and it could potentially be stolen, read, or modified by attackers, hackers, and entities with access to internet infrastructure, such as Internet Service Providers (ISPs) and governments.

This “Not Secure” warning appears on all pages using the HTTP protocol, which is incapable of providing a secure connection. Historically, this has been the primary protocol used for internet communication.
Over the last few years, websites have been transitioning to HTTPS—note the S appended to the end—which does provide security and is used by millions of websites including Google.com, Facebook.com, and Amazon.com, to protect your information while browsing, logging in, and making purchases.
The “Not Secure” warning does not indicate that your computer or the site you are visiting is affected by malware. It only serves to alert you that you do not have a secure connection with that page. Note that some websites may only support secure HTTPS connections on some pages, but not all; in these cases you may see the “Not Secure” warning on only the insecure pages.
If you’re a visitor or an owner/operator of a website using HTTP and seeing this warning, here’s what you can do.




Quote


For Website Visitors
The reason you are seeing the “Not Secure” warning is because the web page or website you are visiting is not providing a secure connection. When your Chrome browser connects to a website it can either use the HTTP (insecure) or HTTPS (secure).

Any page providing an HTTP connection will cause the “Not Secure” warning. You should avoid conducting any sensitive transactions on these pages—such as logging in, providing personal information, or payment information—browsing insecure sites could put you at risk if you are viewing information that is dangerous or not condoned in your country.

As a visitor, you cannot fix the cause of this warning. The only way to solve the issue is for the website operator to obtain an SSL certificate and enable HTTPS on their site. This will allow your browser to connect securely with the HTTPS protocol, which it will do automatically once the website is properly configured.

If a site you frequently use is displaying the “Not Secure” warning, you should contact them and ask them to start supporting HTTPS. You can also try manually replacing HTTP with HTTPS in the URL, as some sites may have partial support for HTTPS but don’t offer it by default.

Note that even with basic browsing over HTTP—such as looking at recipes or reading news—what you are looking at can be monitored, modified, and recorded by entities, such as your ISP or government. This effectively means you do not have any privacy when browsing such pages. On public Wi-Fi networks, like at a coffee shop or airport, there is an additional risk from ‘local attackers’—other computers on that network—which are able to view and monitor the pages you are looking at, the information you are sending them, and what you are searching for.


My Signature
Posted Image


Visit us here: Facebook or Twitter

#7 KlaineyGStudy

 

    Forum Manager

  • Root Admin
  • PipPipPipPipPipPipPip
  • 5,592 posts
  • Gender:Not Telling
 

Posted 03 May 2019 - 08:32 PM

Here it is from siguie :)

Quote

So here's the thing the Chrome browser 56+ {as in the new one rolling out right now} automatically kicks out a "Not Secure" warning in the address bar when logging in to places requesting passwords or credit card information AND the site is not using SSL {that's httpS: instead of http:}. To me it looks like this place is NOT using SSL :no:

I woulda started a new thread but I'm not sure where or IF it's really appropriate for me to do so here SO I'm just adding it here with yet another siguie brand statement of what I think oughta be done :yes:

So IF the login here is not using SSL {pretty sur it's not :no: } I think someone over on the darkside {yeah you know who you are} should post a statement like "For those using Chrome 56+ browsers, the NEW 'Not Secure' warning is simply a new message from google, the security here has not changed" OR something like that. That way when people start noticing the message they wont freak out and think this place has been   taken over by the darkside   been compromised in some way, since Jim has mentioned the delicate situation here :yes:


Supposedly Chrome/Google will eventually give the warning for all webpages not using SSL but right now it's just webpages containing  password and credit card info fields. Personally I look at it as using words now instead of the lock/not locked icon that most people never understood.

There is a cheesy quick fix using a shared SSL certificate that most webosts provide BUT the proper fix is to get your own SSL certificate which runs $80 to insane $$$ per year. So I'm setting up the cheese system for people that freak out too easily and assuming people will get used to it like that whole lock not locked thing :yes:

My Signature
Posted Image


Visit us here: Facebook or Twitter

#8 siguie

 

    Earthbound Spirit

  • GS Member
  • PipPipPipPipPip
  • 1,199 posts
  • Gender:Male
 

Posted 04 May 2019 - 11:38 AM

It's just added stoopid for your protection :headlbash:

At its simplest the "S" in httpS helps to prevent hacker attacks that are based on "eavesdropping".


Think of the "Not Secure" message like being in a busy train station and seeing a sign that says "People can Hear You" vs the "Secure" message  is what you see when you are in a room talking to just one other person.

In a public forum the only time httpS would be useful is when logging in and even then only if you were using a public computer or already hacked wifi ... and the hacker wasn't very good :bad:


Oh and I bailed on changing my sites over to  httpS 'cuz it's too much werk and the only real reason is because google will give you a slightly better ranking. It also adds overhead to the server slowing things down ... and did I mention too much werk :bunny:

Edited by siguie, 04 May 2019 - 11:39 AM.

My Signature
- siguie -

#9 earthlydelitesGStudy

 

    Moderator

  • Moderators
  • PipPipPipPipPipPipPip
  • 5,065 posts
  • Gender:Female
  • Location:Sydney
 

Posted 23 May 2019 - 12:47 AM

great explanations thanks Siguie!
My Signature
It's in the trees, it's coming!





Skin Designed By Evanescence at IBSkin.com