Redirect to https by default

Want to talk about the site itself -- problems, technical issues, ideas, etc.? Here's the place to do it!

Redirect to https by default

Postby bugernot » Sun Aug 11, 2019 3:49 pm

As described in viewtopic.php?f=2&t=4178 , the site supports https.
However, it defaults to http! This means that anyone who just enters the domain without explictly stating https will connect over an insecure connection, which means that anyone on the same network is able to read what you're doing here. Given the content of this site, this is quite undesirable. It would also allow them to read your password, and most people reuse those wuite a bit, so that's quite bad as well.

Is there any chance you could prevent the casual user from making this mistake by simply redirecting all http requests to https, like most websites do nowadays?
bugernot
Member
 
Posts: 4
Joined: Sun Sep 16, 2018 12:00 pm

Re: Redirect to https by default

Postby FrigOfFury » Fri Aug 23, 2019 7:14 pm

I think that would be very advisable. At first I didn't think it supported https and decided not to register, until someone told me that there is an https version.
FrigOfFury
Member
 
Posts: 85
Joined: Sun Aug 11, 2019 6:39 pm

Re: Redirect to https by default

Postby TheoW » Fri Aug 30, 2019 6:24 pm

I'll see if I can figure out how to get it to do that.
Pretends to be the boss around here.
User avatar
TheoW
Boss Lion
 
Posts: 581
Joined: Tue May 22, 2012 10:26 pm
Location: Third star to the left


Return to Site Issues/Feedback

Who is online

Users browsing this forum: No registered users and 2 guests