+- Forums - Open Redstone Engineers (https://forum.openredstone.org)
+-- Forum: Announcements (https://forum.openredstone.org/forum-102.html)
+--- Forum: Announcements (https://forum.openredstone.org/forum-7.html)
+--- Thread: HTTPS! (/thread-6362.html)
Pages:
1
2
HTTPS! - tyler569 - 05-01-2015
I'm proud to announce ORE is now officially SSL-only, meaning all connections to ORE web services (home page and forum) will use the encrypted HTTPS protocol instead of the plaintext HTTP protocol. Some people may see some hangover for a day or two due to caching, but my server will now redirect non-HTTPS users to a secure version of their webpage.
If anyone has any problems with the site, the certificate, or the protocols, please let an admin know so I can make the necessary corrections.
Sorry for any inconvenience this may cause, and any among you with paranoia may now rejoice.
RE: HTTPS! - Nickster258 - 05-01-2015
Hurray!
RE: HTTPS! - Guy1234567890 - 05-03-2015
Swag nuggets
RE: HTTPS! - LordDecapo - 05-04-2015
WOOOOWHOOO!
RE: HTTPS! - fluffy406 - 05-05-2015
WUT?
SO WE TYPED OUR PASSWORDS IN PLAIN TEXT PROTOCOL?
RE: HTTPS! - tyler569 - 05-05-2015
While I strongly doubt it's stupid enough to not (somehow) obfuscate the actual password sending, you could see the little "http" at the top of your browser, so if using http is such a huge concern to you, not sure why you weren't aware we weren't secure before.
RE: HTTPS! - PabloDons - 05-05-2015
something I have woundered quite a while... if I use "remember me", does it send my password when I enter the website?
RE: HTTPS! - tyler569 - 05-05-2015
That's a cookie.
RE: HTTPS! - Nickster258 - 05-05-2015
(05-05-2015, 12:05 PM)tyler569 Wrote: That's a cookie.
Yum!
RE: HTTPS! - Apuly - 05-05-2015
What probably happens when you use the 'remember me' feature, is that after logging it, the site sends a cookie with a randomly generated string to your computer. When you leave the site, and then go back, it reads the cookie, and checks if it's equal to the string saved on the server. If they're the same the website automaticly logs you in
tl;dr: no.