HTOTM: FUSION
FAQ
Advanced Search
Subscribed Threads
Today's Posts Mark Forums Read
Reply
Switch to Linear Mode Switch to Hybrid Mode Switch to Threaded Mode
Original Post
View Public Profile Send a private message to Dinis Find More Posts by Dinis
Active Inventory Deactivated Inventory Trade History

Dec 6, 2018 Old
View Public Profile Send a private message to Dinis Find More Posts by Dinis
Active Inventory Deactivated Inventory Trade History
Dinis's Avatar
Join Date: Jul 2009
Dec 6, 2018 Old
Get an SSL certificate, for the love of god
There's no excuse to be on http and not https in 2018. The certificates are literally there for free.
https://doesmysiteneedhttps.com/

If you don't have a sysadmin I even volunteer to do this for you
Quote
View Public Profile Send a private message to Yoyo Find More Posts by Yoyo
Active Inventory Deactivated Inventory Trade History

Dec 7, 2018 Old
View Public Profile Send a private message to Yoyo Find More Posts by Yoyo
Active Inventory Deactivated Inventory Trade History
Yoyo's Avatar
Join Date: Nov 2009
Dec 7, 2018 Old
Originally Posted by Dinis View Post
If you don't have a sysadmin I even volunteer to do this for you

cheeky
multiple texture uploader! updated: multiple texture remover!
updated pretty colorlist!

<BobJoelZ> ok ive just rebooted my pc and ive tried to activate my reflex on yahoo internet explorer :/ no luck

<Aracoon> I do not enjoy having anal sex with multiple men
Quote
View Public Profile Send a private message to Crimson Find More Posts by Crimson
Active Inventory Deactivated Inventory Trade History

Dec 7, 2018 Old
View Public Profile Send a private message to Crimson Find More Posts by Crimson
Active Inventory Deactivated Inventory Trade History
ub3r Crimson's Avatar
Join Date: Mar 2008
Dec 7, 2018 Old
Originally Posted by Dinis View Post
There's no excuse to be on http and not https in 2018. The certificates are literally there for free.
https://doesmysiteneedhttps.com/

If you don't have a sysadmin I even volunteer to do this for you

10 years been here.. one time the forums changed and that's that.
forums haven't been changed for the better for like 9 years though.

hampa doesn't give a shit and he sucks.
Last edited by Crimson; Dec 7, 2018 at 09:55 PM.
Pendragon = Bandwagon.
Quote
View Public Profile Send a private message to MrSofty Find More Posts by MrSofty
Active Inventory Deactivated Inventory Trade History

Dec 8, 2018 Old
View Public Profile Send a private message to MrSofty Find More Posts by MrSofty
Active Inventory Deactivated Inventory Trade History
Senior Member MrSofty's Avatar
Join Date: Dec 2015
Dec 8, 2018 Old
True there's no reason for it to stay http if the certificates are literally free
Na sahi kuch magar itna to kiya karte the
Wo mujhe dekh ke pehchan liya karte the
Quote
View Public Profile Send a private message to Tuna Find More Posts by Tuna
Active Inventory Deactivated Inventory Trade History

Dec 13, 2018 Old
View Public Profile Send a private message to Tuna Find More Posts by Tuna
Active Inventory Deactivated Inventory Trade History
<º))))><
 Tuna's Avatar
Join Date: Aug 2012
Dec 13, 2018 Old
I might be wrong, but I seem to remember that Toribash relies on a few external resources that are served over http, this would be an issue in moving forward on full https. There might also be a lot of hard coded hrefs that link to http littered throughout the code, although this **could** be fixed with some nice python automation fixer upper magics.

Possible issues with breaking the game client from talking to the site?

That's a few things that comes to mind for why we can't just set up a certificate and bob's your uncle.
Aimlessly swimming in circumcisions
Quote
View Public Profile Send a private message to Dinis Find More Posts by Dinis
Active Inventory Deactivated Inventory Trade History

Dec 13, 2018 Old
View Public Profile Send a private message to Dinis Find More Posts by Dinis
Active Inventory Deactivated Inventory Trade History
Dinis's Avatar
Join Date: Jul 2009
Dec 13, 2018 Old
Originally Posted by Tuna View Post
I might be wrong, but I seem to remember that Toribash relies on a few external resources that are served over http, this would be an issue in moving forward on full https. There might also be a lot of hard coded hrefs that link to http littered throughout the code, although this **could** be fixed with some nice python automation fixer upper magics.

Possible issues with breaking the game client from talking to the site?

That's a few things that comes to mind for why we can't just set up a certificate and bob's your uncle.

It being menial isn’t a good excuse, and as you said you should be able to automagic it
Last edited by Dinis; Dec 13, 2018 at 08:02 PM.
Quote
View Public Profile Send a private message to Tuna Find More Posts by Tuna
Active Inventory Deactivated Inventory Trade History

Dec 13, 2018 Old
View Public Profile Send a private message to Tuna Find More Posts by Tuna
Active Inventory Deactivated Inventory Trade History
<º))))><
 Tuna's Avatar
Join Date: Aug 2012
Dec 13, 2018 Old
Originally Posted by Dinis View Post
It being menial isn’t a good excuse, and as you said you should be able to automagic it

I wont be able to do it, I'm not a site-dev for toribash and probably never will be again.

Although now that I think about it with more sleep I could see HSTS being implemented, and as long as all external resources are secure it should work. Site side that is, as I don't really remember the details of how the site and game interact.

The thing is that toribash doesn't store or receive any banking details so https isn't as needed as sites that actually have eCommerce. Not to say that it's not needed, but it's definitely not as high of a priority as it is for other sites.
Aimlessly swimming in circumcisions
Quote
Reply

« Previous Thread | Next Thread »