Out to Lunch
Ventor
Every time I log into RFF through Firefox I get this automated message that my login is not secure. How do I resolve this? Many thanks for your feedback. Cheers, Peter
FujiLove
Well-known
Probably because they are not using a secure protocol (https) to serve the page. The site owner should set it up with a secure certificate. Google allegedly gives a boost to HTTPS pages in their search results, so there is an incentive there for the site owner.
Passwords being sent unencrypted can be easily intercepted, so don't use it for any other site!
Passwords being sent unencrypted can be easily intercepted, so don't use it for any other site!
xyz3450
-
Good question -- I'd noticed this. Are there any risks one should be aware of?
krötenblender
Well-known
Just use https://www.rangefinderforum.com
instead of the "old" version with http.
instead of the "old" version with http.
raid
Dad Photographer
Thanks. I just logged back in with https.
Erik van Straten
Veteran
unless you store personal data in your private messages here, there isn't much a hacker could get. just don't use the same password here as you do on other sites that *do* have sensitive info.
Shac
Well-known
Erik - copy and paste the url above and enter in a new browser window - worked for me
sevo
Fokutorendaburando
The site is also served via https - perhaps the site admin should set up a redirect...
Passwords haven't been sent unencrypted for something like 22 years. Safe authentication methods have already been in http before https was invented - the latter adds safe CONTENT.
Erik van Straten
Veteran
leo schabicht
Newbie
Copy paste https://www.rangefinderforum.com in a new browser window doesn't work for me, at least not in google chrome. Message is still 'not secure' or 'onveilig' as they say in these parts of the world. Site admin action required, please. Thanks.
Cheers
Leo
Cheers
Leo
Mackinaw
Think Different
raid
Dad Photographer
Same for me (with Google Chrome).
farlymac
PF McFarland
I right clicked on the URL in my Bookmarks list, selected Properties, added the s, and saved. Works just fine without having to go hunting for it at the bottom of the bookmark listing.
PF
PF
finguanzo
Well-known
Should have the web person change the rewrite rules and have all traffic routed to https. Just a note.
Im also getting a Not secure from Chrome, which is odd cause i checked the certification on the site and all comes back ok...
Im also getting a Not secure from Chrome, which is odd cause i checked the certification on the site and all comes back ok...
leo schabicht
Newbie
Everything is in order. Problem solved ! Thank you.
Leo
Leo
cqing
Member
The site should redirect any http request to https.
David Hughes
David Hughes
Hi,
I look at the address before doing anything and - often - just type in the https:// the old fashioned one finger way.
It makes me laugh being warned that anyone could read what I've typed on a forum if I use an insecure link. Until now that has been my aim...
And I hope I don't have to explain why.
The other thing I'd liked sorted out is finding, at the end of a reply, that I am no longer logged in. And (EDIT) the double spacing.
Regards, David
I look at the address before doing anything and - often - just type in the https:// the old fashioned one finger way.
It makes me laugh being warned that anyone could read what I've typed on a forum if I use an insecure link. Until now that has been my aim...
And I hope I don't have to explain why.
The other thing I'd liked sorted out is finding, at the end of a reply, that I am no longer logged in. And (EDIT) the double spacing.
Regards, David
FujiLove
Well-known
This is incorrect. A HTTP data transfer is completely unencrypted, so the username and password are sent back to the server as plain text. A simple packet sniffer such as Wireshark can easily intercept the login data and expose the user credentials. It's one reason why you should always use an encrypted VPN when connected to public wifi networks.
jos58
Member
Just to be on the save side logged out and logged in again using https!
Everything working 'normal'.
Everything working 'normal'.