Page 1 of 2

UT99.org goes SSL!

Posted: Sun Sep 28, 2014 11:31 pm
by Shade
Dear community,

with moving UT99.org to another host I have taken the opportunity to acquire an SSL certificate.

ImageImage

Happy safer surfing! :)

Best regards,
Shade

Re: UT99.org goes SSL!

Posted: Mon Sep 29, 2014 2:00 am
by JackGriffin
This is a really nice addition to the site. Well done sir. I appreciate the added security.

EDIT: I *love* gandi's slogan..."No bullshit." Yep, that's the kind of people I want to deal with :rock:

Re: UT99.org goes SSL!

Posted: Mon Sep 29, 2014 2:40 am
by Dr.Flay
It seemed an appropriate time to upgrade, and since Google are starting to prioritise HTTPS results it also makes strategic sense.
Thankfully Shade got a good deal with the host, so it didn't cost too much.

Thanks for going the extra mile Shade :tu:
You are actually leading the way, as this is not common yet among community forums :mrgreen:

Re: UT99.org goes SSL!

Posted: Mon Sep 29, 2014 5:57 am
by Higor
Got scared my browser asked for login info on the site.
At least I know it's safe :)

Re: UT99.org goes SSL!

Posted: Mon Sep 29, 2014 5:36 pm
by EvilGrins
Ah, so this is why I keep getting asked if I wanna "Do you want to view only the webpage content that was delivered securely?". Up till now i only ever saw that on the UnrealEngine forums.

Usually when I pop on here I open several threads at once, whatever's new that catches my eye. Only this gandi-lock thing makes me have to approve each one before proceeding. Still, better security and all.

Weird thing, and this may just be the interaction with my work's computers, I have to hit "No" to that. If I hit "Yes" the thread shows up fine but every single image in that thread goes Red X on me. Same thing happens in the UnrealEngine forums.

Weird, huh?

Re: UT99.org goes SSL!

Posted: Mon Sep 29, 2014 7:59 pm
by Sp0ngeb0b
EvilGrins wrote:Weird thing, and this may just be the interaction with my work's computers, I have to hit "No" to that. If I hit "Yes" the thread shows up fine but every single image in that thread goes Red X on me. Same thing happens in the UnrealEngine forums.

Weird, huh?
That's cause these images are 3rd party resources, which are not delivered through ut99.org but from other sites without SSL security.

Re: UT99.org goes SSL!

Posted: Mon Sep 29, 2014 8:09 pm
by papercoffee
I don't see any changes ... Do I have to activate The SSL in my Fire Fox?
'thought it was by default active.

Edit------------------------------
Something went wrong ...I can't see any written content.
And some Names are invisible too.
This is odd.

Edit----------------------------2
Tested it on other pages ...the same error.
So ...it's something on my side. :|

Re: UT99.org goes SSL!

Posted: Mon Sep 29, 2014 9:09 pm
by Dr.Flay
SSL is enabled in FF by default. If you want to check your settings, use this page and look for your browser.
http://www.techsupportalert.com/content ... ncerns.htm
I started a thread here https://vivaldi.net/forum/private-brows ... sl-helpers so hopefully more useful tips and tools get added there.

The warning about mixed modes is common and a bit unavoidable.
A browser can warn you about the fact that some of the content it sees in an HTTPS page has been linked with normal HTTP.
eg. most peoples sigs and links they post.
If everyone posts HTTPS links, it will stop complaining.
We all have to get used to it anyway, as we no longer have much choice.
You should actually now start seeing browsers complaining more often, as you will notice incorrectly configured sites that previously seemed fine.

So far you have been trusting all those links and pics, so you can decide to show all content here.
Be warned, this is how you punch an easy hole in an SSL site, but we don't allow html in posts or sigs.

The HTTPS everywhere plugin tries to fix problems like this, and other incompatibilities.
https://www.eff.org/https-everywhere (sorry no IE plugin)
(Ask for this to be installed in your work browsers)

I also use "LinkRedirector" to fetch HTTPS and bypass the extra tracking hops in google
http://far.whochan.com/wlog.cgi/LinkRedirector (sorry no IE)

I can see Internet Explorer becoming an even weaker point than before. Without the extra muscle of some plugins it is rather defenceless.

Re: UT99.org goes SSL!

Posted: Tue Sep 30, 2014 8:10 am
by Myth
For anyone wondering what this is, it means that the connection to ut99.org is from now on encrypted. This is supported by all browsers. Any data you send or receive can't be intercepted by 3rd party.

Up until now, all someone had to do is to look at the network packets sent when you log in and read your username and password to gain access to your account. Now this is not possible anymore.

Re: UT99.org goes SSL!

Posted: Thu Oct 02, 2014 2:51 am
by Wises
probably broke the Tapatalk mod in the process.

also Https: helps with any transactions you want to setup for funding ofc.

Re: UT99.org goes SSL!

Posted: Thu Oct 02, 2014 7:39 am
by Shade
Thank you for the information Wises. Sadly I can't test Tapatalk by my own atm (dead smartphone). I will see what I can do.

Re: UT99.org goes SSL!

Posted: Thu Oct 02, 2014 8:20 am
by UnrealGGecko
I still get a pop up to install it, so maybe it's working fine? (using an Android Tablet).

Re: UT99.org goes SSL!

Posted: Fri Oct 03, 2014 8:19 am
by Dr.Flay
Depends what browser and security settings you are using as to how it is handled.
You have the option of Chrome and Opera. Perhaps compare

Re: UT99.org goes SSL!

Posted: Sun Oct 05, 2014 2:56 pm
by Wormbo
Actually the switch to SSL it doesn't add that mush security yet. The certificate does not verify the server's identity, so it won't prevent a man-in-the-middle attack. (Somebody could intercept your connection attempts and instead let you connect to his server, while he establishes a connection to ut99.org, forwarding any requests and responses between you and the server. That man in the middle would still be able to read everything.)

Then again, yet another SSL website increases the amount of encrypted traffic for NSA and GCHQ to store for potential later analysis. The more encrypted data we throw at them, the harder it will be for them to process it all. They might still be able to filter by source/destination IP, but how should they (or we) know if there isn't some terrorist using PMs to communicate over otherwise harmless forums without the forum admins' knowledge.

Re: UT99.org goes SSL!

Posted: Mon Oct 06, 2014 6:50 pm
by RocketJedi
i'm looking for a new webhost does your host have operations in the US? I'm only asking because I like the performance of these forums