[Login] Automatically use HTTPS on Login

[Metsfanmax]

no actually he said he would check around theres still ways to hack without shells if i am incorrect. as most ways are the .swf wich they dont allow.

Ok, but do you understand that the issue of hacking into the server and the issue of hacking into some random guy's personal router are totally different topics?

[bedub1]

http://blogs.villagevoice.com/runninsca ... hacked.php

I just want everybody to know I came up with this shit on my own..and didn't copy this stupid senator. Instead...the senator copied me. This just confirms what I've believed all along...that they've got a bug implanted in my brain.

Power to the sheepel!

[Ace Rimmer]

I thought I posted here already, must have only been in live chat. I use HTTPS for everything on this site and have no issues with slowness/etc. It's a good idea and basic security to encrypt your login information, even if you don't encrypt anything else. It should be done.

[bedub1]

Thanks for your support everybody. So far it seems everybody supports this idea except the 2 suggestions moderators that have posted about it....

[blakebowling]

Thanks for your support everybody. So far it seems everybody supports this idea except the 2 suggestions moderators that have posted about it....

I personally don't think it's necessary. But in the end it's about what the community as a whole thinks.

Stickied.

[bedub1]

Another member has chosen to leave the Dark Side and join us. Congrats to Darwins_Bane for seeing the light!

[blakebowling]

Another member has chosen to leave the Dark Side and join us. Congrats to Darwins_Bane for seeing the light!

Just thought I'd add that I only think it's silly if you encrypt everything. Encrypting login isnt necessarily a bad idea, its just not a high priority.

[bedub1]

Another member has chosen to leave the Dark Side and join us. Congrats to Darwins_Bane for seeing the light!

Just thought I'd add that I only think it's silly if you encrypt everything.

duh

Encrypting login isnt necessarily a bad idea, its just not a high priority.

So....do you support encrypting the login?

[QoH]

Hey blake...

Did basic man ever PM you with your PW?

[blakebowling]

he did not. If he does, I will (after changing my password) submit this immediately.

Also, yes, encrypting the login does make sense, but it's not necessary.

[InsomniaRed]

How many of these suggestions are 'necessary', really? They are suggested because people want to see them implemented, that's what this forum is for!

[blakebowling]

How many of these suggestions are 'necessary', really? They are suggested because people want to see them implemented, that's what this forum is for!

True.

On the other hand.

Submitted.

[SirSebstar]

he did not. If he does, I will (after changing my password) submit this immediately.

Also, yes, encrypting the login does make sense, but it's not necessary.

I concur that it is not as neccecary as say air.. but If i want to keep playing CC i need it to be in accordence with the new firewall

[blakebowling]

he did not. If he does, I will (after changing my password) submit this immediately.

Also, yes, encrypting the login does make sense, but it's not necessary.

I concur that it is not as neccecary as say air.. but If i want to keep playing CC i need it to be in accordence with the new firewall

Thats why I submitted it.

[stahrgazer]

While I'm not impressed by bedub's attempt to hack his own account, I must admit the argument about connections at public hotspots is compelling.

Yes.

Plus, unless the coding to make CC more secure is incredibly hard and costly, why NOT try to protect users, some of whom pay to use this site?

And I can't see the coding for security being any more hard and costly than, say, coding to enable clickies (most recent update).

[bedub1]

Found on the home-page just now.

Webmaster: I changed the way static elements like images are cached and served over https. Should make thing run a little quicker.

Excellent start....

[chapcrap]

I just wanted to make a note about this...

There are a lot of links already posted in forums using HTTP for the link. If this is implemented, it would be good to have any HTTP link be changed to HTTPS

[blakebowling]

I just wanted to make a note about this...

There are a lot of links already posted in forums using HTTP for the link. If this is implemented, it would be good to have any HTTP link be changed to HTTPS

This is both unnecessary and complicated. Using HTTPS on login would just send the username and password information securely, it wouldn't effect the protocol you're using to browse the site.

[blakebowling]

Done!