Enabling HTTPS

Discussion in 'Questions, Bugs and Suggestions' started by Lewis Watson, Jul 18, 2017.

  1. Lewis Watson

    Lewis Watson Platinum Member

    Messages:
    28
    Location:
    Fife
    Car:
    2012 Clio 200 Cup
    Would it be possible to enable HTTPS on this site? I often use public Wi-Fi so all my Clio chat (and passwords) would be broadcast to anyone in range. Even on encrypted Wi-Fi the data would be bouncing around the internets in cleartext.
     
    tcw likes this.

  2. Bene

    Bene Gold Member

    Messages:
    31
    Location:
    Newcastle, Co. Down
    Car:
    2010 PW Clio 200
    You could use an encrypted VPN :smiley:
     
  3. Daverb

    Daverb Paid Member

    Messages:
    352
    Location:
    Fife, Scotland
    Car:
    Clio 197
    Oh no think of all the things a hacker could do with your Clio197 details. :think:
     
    Lewis Watson likes this.
  4. Lewis Watson

    Lewis Watson Platinum Member

    Messages:
    28
    Location:
    Fife
    Car:
    2012 Clio 200 Cup
    The NSA probably has a file on my 200 by now. ️‍️‍
     
    Last edited: Aug 15, 2017
    Benno and DS197 like this.
  5. DS197

    DS197 POTM Winner - June 2017 Paid Member

    Messages:
    1,507
    Car:
    Clio 197
    They've got a lot more than that if their awful antics are anything to go by! We're probably being monitored by GCHQ as we speak :ninja:
     
    Lewis Watson likes this.
  6. Bene

    Bene Gold Member

    Messages:
    31
    Location:
    Newcastle, Co. Down
    Car:
    2010 PW Clio 200
    Unless you use the same password here that you do for your email address (which you really shouldn't) there's very little to worry about

    Cover your webcams :openmouth:
     
  7. rcwsr

    rcwsr Paid Member

    Messages:
    13
    Location:
    South Leicestershire
    Car:
    Clio RS 200
    The point is that having a valid cert means users can trust that the content they see on their devices comes from the clio200 servers. Without that, it means a man in the middle could inject malicious code into the response, even something as simple hijacking a link on the forum to take you to a fake version of Amazon for example where you might enter your card details.

    SSL certs are free and easy to set up these days: https://letsencrypt.org

    Here's an interesting read about NatWest and their lack of SSL certs which should clear up some misconceptions: https://www.troyhunt.com/im-sorry-y...-but-https-on-your-landing-page-is-important/

    I'm new to the forum but am buying my first 200 next week, so don't hold this post against me!
     
    Jimmy and Lewis Watson like this.

  • Share This Page


    1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
      By continuing to use this site, you are consenting to our use of cookies.