Jump to content
boombastik

support forum in https

Recommended Posts

I think after 8 years it is good to go to with HTTPS in forum site.

I know that cisko is worldwide leader in networking, i understand that this is a secondary project for them but i know that Cisco products deliver network security, 

so i think a user it is better to see a HTTPS site under this branding.

This is my personal opinion and i tell this with respect in cisko hardware products that have more quality from other brands.

Share this post


Link to post
Share on other sites

Cisco did take over this project and we are working on improving everything (the software, the forums etc).

Glad you like it !

Share this post


Link to post
Share on other sites

This subject has been brought up before.

I would also like to see this forum eventually use either Secure Sockets Layer (SSL) or Transport Layer Security (TLS) encryption protocols. That would provide added security when a user logs in to the forum. My Firefox browser warns me every time, when I log in, that this site is not secure.

 

Share this post


Link to post
Share on other sites
On 2/19/2019 at 3:08 AM, chaozz said:

You can get a free SSL from letsentrypt.com , so what's holding you guys back?

We will, nothing is holding us back as you say. It will get done.

Share this post


Link to post
Share on other sites

That is some "great news" for the forum! Something I've been hoping would happen for a while. Plus it's nice not to see the FF warnings.

I do have some new concerns however. I had to allow a new script which is coming from content.invisioncic.com to be able to post new content. Is this brand new script associated with the https protocol? I am assuming & hope so since I created a permanent trusted/allow rule for it.

Also, why is this site now using the googletagmanager.com script? "Can't say I like that very much!!!" This script is blocked since I personally don't like Google spying on my internet activity!

"In fact, by default, NoScript has this script as an automatically untrusted, blocked object!"

I know this script can be used for site analytic tags and other legit web site applications but it can also be used for gathering user tracking info (which can be shared between the original site & the Google analytic team, perfectly legal potential spyware in my opinion) which has always made me highly suspicious of it's intended use as it does with the NoScript crew as well. So I'm not alone there.

If it's not needed with the new https protocol or the forum in general I would vote to get rid of the googletagmanager script all together.

I'm sure, in the future, I won't be the only one that questions why this script is even being used on this site in the first place if it's not removed.

Share this post


Link to post
Share on other sites
17 hours ago, ritchie58 said:

That is some "great news" for the forum! Something I've been hoping would happen for a while. Plus it's nice not to see the FF warnings.

I do have some new concerns however. I had to allow a new script which is coming from content.invisioncic.com to be able to post new content. Is this brand new script associated with the https protocol? I am assuming & hope so since I created a permanent trusted/allow rule for it.

Also, why is this site now using the googletagmanager.com script? "Can't say I like that very much!!!" This script is blocked since I personally don't like Google spying on my internet activity!

"In fact, by default, NoScript has this script as an automatically untrusted, blocked object!"

I know this script can be used for site analytic tags and other legit web site applications but it can also be used for gathering user tracking info (which can be shared between the original site & the Google analytic team, perfectly legal potential spyware in my opinion) which has always made me highly suspicious of it's intended use as it does with the NoScript crew as well. So I'm not alone there.

If it's not needed with the new https protocol or the forum in general I would vote to get rid of the googletagmanager script all together.

I'm sure, in the future, I won't be the only one that questions why this script is even being used on this site in the first place if it's not removed.

We track number of downloads, it's been in place since before I started  with google analytics

Share this post


Link to post
Share on other sites

If that's the case then I have more questions than answers. Why did NoScript not advise me of the presence of tagmanager before the https change? That's strange. Either way, that non-essential script (in my opinion) will remain blocked on this computer.

Share this post


Link to post
Share on other sites
6 hours ago, ritchie58 said:

If that's the case then I have more questions than answers. Why did NoScript not advise me of the presence of tagmanager before the https change? That's strange. Either way, that non-essential script (in my opinion) will remain blocked on this computer.

Google Tag Manager is a tag management system created by Google to manage JavaScript and HTML tags used for tracking and analytics on websites
 

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...

×
×
  • Create New...