Not secure

[Axial]

I don't know if there's a section regarding sites that aren't secure from our computers.

I'll shoot anyway and if I'm not on topic with the general section please just direct me, thank you.

 

On the left of the top bar one website (forum) says: Not secure. And when you click info it says that it can steel your credit cards, your password, your name, identity, brief it could be very negative to your health. Why are there sites with that sticker (not secure)?

 

How to make it secure? It's one of those sites that were hacked globally in the past. Like Facebook, Twitter, Linkedin, Yahoo, Amazon, Google, etc. Can it also steal your files, slow your browser, brief destroy your computer? ...And even degrade the sound quality of your HR music, and of youtube?

 

I ask here because it's a computer site. For the high-end audio. ...And music we like clean.

[Samuel T Cogley]

I encourage you to educate yourself about Transport Layer Security and understand why your browser is calling the site "insecure".

 

Merely enabling SSL will not prevent this forum from being hacked. Education will help dispel fear.

[Axial]

Thank you; it seems to be the right link for me to learn more about.

____

 

By the way, what is the time limit to edit our posts? I have a typo in my first post ("steel" should be "steal") but my time was up.

[mansr]

It would be nice if https were supported, even if it won't prevent the server itself getting hacked.

[Samuel T Cogley]

It would be nice if https were supported, even if it won't prevent the server itself getting hacked.

 

I dunno. Chris has to purchase a certificate on a semiannual basis just so we can get the nice green padlock icon in the URL bar? I understand that browsers are getting more aggressive with insisting on https, but I was under the impression that this audience (perhaps I'm mistaken) understands it's unnecessary for a public forum.

[mansr]

I dunno. Chris has to purchase a certificate on a semiannual basis just so we can get the nice green padlock icon in the URL bar? I understand that browsers are getting more aggressive with insisting on https, but I was under the impression that this audience (perhaps I'm mistaken) understands it's unnecessary for a public forum.

 

Encrypting the traffic does more than merely protect the content, which as you say is public anyway. It also prevents injection of malware (or other unwanted content) into the web pages while transit.

[WMW]

Dear "Axial",

 

I'm given to believe one should see "https" for "secure" (to a reasonable extent) website vs "http" for a "non-secure" website. The caveat being sensitive information (e.g. credit card data, financial data, etc.,) should be restricted to "https" connections. "Not secure" is a warning to an unwary CA poster I imagine. I know this is a very basic explanation, but my guess is even most CA members aren't aware of the differences between SSL and TLS protocols. I perused the referenced (vida infra) wiki article which I found overly-broad, complex and nothing I ever hope to require understanding of to use a computer with relative safety. For added security one might consider adding a vpn service (I use "Private Internet Access"), but beyond that and "https" I don't think there is great risk.

 

I am no computer geek (obviously), just a retired physician. Others may disagree.

 

Bill Walker

[audiventory]

I don't know if there's a section regarding sites that aren't secure from our computers.

I'll shoot anyway and if I'm not on topic with the general section please just direct me, thank you.

 

On the left of the top bar one website (forum) says: Not secure. And when you click info it says that it can steel your credit cards, your password, your name, identity, brief it could be very negative to your health. Why are there sites with that sticker (not secure)?

 

How to make it secure? It's one of those sites that were hacked globally in the past. Like Facebook, Twitter, Linkedin, Yahoo, Amazon, Google, etc. Can it also steal your files, slow your browser, brief destroy your computer? ...And even degrade the sound quality of your HR music, and of youtube?

 

I ask here because it's a computer site. For the high-end audio. ...And music we like clean.

 

1. First recommendation is installing of antivirus, that check http traffic and files in real time.

 

2. Use long complicate password.

 

3. And don't worry about sound quality

 

https ("site is secure") protocol don't keep from viruses if a site contains it.

[mansr]

https ("site is secure") protocol don't keep from viruses if a site contains it.

 

No, but it prevents someone between you and the site adding anything nasty to it. Some ISPs inject intrusive ads in unencrypted web pages, and sometimes those ads contain dangerous malware. These days, there's no reason not to use https.

[weldp]

https://letsencrypt.org/ provides free certificates for SSL. I think it is important. Especially for a site that supports username/password login.

 

-weldp

[Axial]

The "Not Secure" text @ the beginning of the URL address of the site I'm referring to is NOT ComputerAudiophile.

I know that CA is not using https:// in its address, but it's ok; it has not a 'Not secure' sign.

 

The "Not secure" sign is from one of the websites of a company that was hacked a while back...Vertical Scope.

 

I just thought of mentioning.

 

P.S. That site too doesn't start with https:// but with www.

And @ the end of that space for the URL address, @ extreme right, it has a small key logo that you can click on to manage your passwords.

[audiventory]

The "Not Secure" text @ the beginning of the URL address of the site I'm referring to is NOT ComputerAudiophile.

I know that CA is not using https:// in its address, but it's ok; it has not a 'Not secure' sign.

 

The "Not secure" sign is from one of the websites of a company that was hacked a while back...Vertical Scope.

 

I just thought of mentioning.

 

P.S. That site too doesn't start with https:// but with www.

And @ the end of that space for the URL address, @ extreme right, it has a small key logo that you can click on to manage your passwords.

 

Sometimes appears page like "non secure" (I don't remember exactly what there written) instead a site page.

 

As far as I know, that a antivirus can found as real virus as same "virus signature".

 

And the site may be marked.

[mansr]

Sometimes appears page like "non secure" (I don't remember exactly what there written) instead a site page.

 

As far as I know, that a antivirus can found as real virus as same "virus signature".

 

And the site may be marked.

 

Recent versions of Firefox seem to show a warning icon for non-https pages containing a password field.

[audiventory]

Recent versions of Firefox seem to show a warning icon for non-https pages containing a password field.

 

It show warning at left of address (URL) input field.

[Axial]

There are other browsers too (not just Firefox) who let you know of possible "security breach".

Like that "Not secure" text @ the beginning of that site from Vertical Scope.

 

I've read in the past about the sites who don't have a good security system for their clientele/members.

It is quite common in the world of computers and companies of the Internet.

 

This is a recent discovery to me, that "Not secure" text from that site. Or I didn't notice it in the past.