Jump to content

  •  

- - - - -

SSL Secure


  • Please log in to reply
9 replies to this topic

#1 ScottieKnowz

ScottieKnowz

    Newbie

  • Member
  • Pip
  • 7 posts

Posted 28 February 2018 - 06:14 AM

Hey there, I am new to the site but noticed something right out the gate.

Your site is NOT SSL secure, was wondering if there was a certain reason for that as I'm sure the amount of downloading/credentials on this site are quite high.

It's no big deal really, but things like Certbox exists to make these tasks easy for SSL securing a website.

#2 _.:illus!on:._

_.:illus!on:._

    Community Manager

  • Community Manager
  • 2,718 posts

Donator

Posted 07 March 2018 - 05:23 AM

For what we need SSL?
SSL protects you from hacking or logging in serverlocations, it does not protect you from keyloggers on your pc or the server itself.
Now tell me how many people got hacked from serverlocations or how many accounts are stolen in serverlocations?

if it is really unsecure to have no SSL i'm sure the site will be hacked every day but it isn't ;)

btw. SSL is not really secure, that is only what the people should think, so many motherfuckers can make money with the SSL certificate

Posted Image


#3 kaljukass

kaljukass

    Invision-Virus Nerd

  • Member
  • PipPipPipPipPip
  • 367 posts

Posted 07 March 2018 - 03:18 PM

On this point I agree 100%, SSL is new money making machine for some companies, the SSL certificate don't protect anyone and in any way.

#4 Shto

Shto

    Newbie

  • Member
  • Pip
  • 7 posts
  • LocationRomania

Posted 12 March 2018 - 06:50 AM

View Postkaljukass, on 07 March 2018 - 03:18 PM, said:

On this point I agree 100%, SSL is new money making machine for some companies, the SSL certificate don't protect anyone and in any way.

That s correct. :)

#5 jayZ

jayZ

    Newbie

  • Member
  • Pip
  • 6 posts

Posted 23 March 2018 - 11:32 PM

Can somebody explain what SSL really does? I do have it on my forums but im not sure if it really helps in some way or not. Is it really neccessary?

#6 Aeternum

Aeternum

    Member

  • Banned
  • PipPip
  • 12 posts

Donator

Posted 24 March 2018 - 04:50 AM

SSL is extremely important, but not necessary on a website such as invision virus. The purpose of SSL is to encrypt data sent from a browser to a companies server, ensuring their online transactions remain confidential. Many countries require it by law if personal information such as address, numbers, payment information, and even just a last name, is communicated to the server. Also, SSL is free via cloudflare.
As for how SSL works, we start as an end user:
  • An end-user asks their browser to make a secure connection to a website (e.g.https://www.example.com)
  • The browser obtains the IP address of the site from a DNS server then requests a secure connection to the website.
  • To initiate this secure connection, the browser requests that the server identifies itself by sending a copy of its SSL certificate to the browser.
  • The browser checks the certificate to ensure:
    That it is signed by a trusted CA
    That it is valid - that it has not expired or been revoked
    That it confirms to required security standards on key lengths and other items.
    That the domain listed on the certificate matches the domain that was requested by the user.
  • When the browser confirms that the website can be trusted, it creates a symmetric session key which it encrypts with the public key in the website's certificate. The session key is then sent to the web server.
  • The web server uses its private key to decrypt the symmetric session key.
  • The server sends back an acknowledgment that is encrypted with the session key.
  • From now on, all data transmitted between the server and the browser is encrypted and secure.
If you plan on processing or obtaining any information that is deemed as confidential client information by the laws in your country you should have SSL on your site.

#7 ernesto2

ernesto2

    Member

  • Donator
  • PipPip
  • 11 posts

Donator

Posted 02 April 2018 - 03:35 AM

i have dude how to make ssl in forum in all http:// need add https:// no?

#8 _.:illus!on:._

_.:illus!on:._

    Community Manager

  • Community Manager
  • 2,718 posts

Donator

Posted 02 April 2018 - 09:09 AM

But all existing encryption methods can be unencrypted ;) I mean ya ssl is good for banking shit and so on but it is never a real protection, in my opinion we can say it is an additional protection.

A little example to show you how senseless ssl is: If you are in an open wifi network all hackers can see what you are typing if the website is with ssl or not. I know the hacker don't need to unencrypt the ssl data, he can use another method but you think you have a secure connection but in real you have nothing.

Posted Image


#9 RizRari

RizRari

    Newbie

  • Member
  • Pip
  • 7 posts
  • LocationRomania

Posted 23 April 2018 - 12:13 PM

View Post_.:illus!on:._, on 02 April 2018 - 09:09 AM, said:

But all existing encryption methods can be unencrypted ;) I mean ya ssl is good for banking shit and so on but it is never a real protection, in my opinion we can say it is an additional protection.

A little example to show you how senseless ssl is: If you are in an open wifi network all hackers can see what you are typing if the website is with ssl or not. I know the hacker don't need to unencrypt the ssl data, he can use another method but you think you have a secure connection but in real you have nothing.
It's really money that you invest in some motes that do not help us, but it does not add any more to the site.

#10 flashxml

flashxml

    Member

  • Member
  • PipPip
  • 13 posts

Posted 26 April 2018 - 02:44 AM

SSL it adds some trust to people who register to your website. When they need to insert personal data, personal data, email, phone etc. Yes, it's harder to get down a https from http. And brute force is easier on http ... tested in the past by me :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users