SSL browsing

News about Notat.io. Comments and suggestions for the site.
Locked
User avatar
OCTO
Posts: 1738
Joined: 05 Oct 2015, 06:52
Location: Sweden

SSL browsing

Post by OCTO »

Now it is installed the SSL certificate, which encrypts your traffic to the forum. While nothing is so particularly private and secret on this forum, login-in and sending passwords over the HTTP is completely insecure (prone to man in the middle attack).

If you don't want to install the certificate you can always use HTTP (at least be sure than you DO NOT use the same password to your e-mail!).

If you wish to use HTTPS than you have explicitly allow notat.io cert to be installed. Go to https://notat.io
You will get this in Firefox:
Screen shot 2015-12-18 at 1.47.10 PM.png
Screen shot 2015-12-18 at 1.47.10 PM.png (65.03 KiB) Viewed 8563 times
And than you have to confirm:
Screen shot 2015-12-18 at 1.47.17 PM.png
Screen shot 2015-12-18 at 1.47.17 PM.png (56.31 KiB) Viewed 8563 times
User avatar
Schneider
Posts: 111
Joined: 09 Oct 2015, 06:50
Location: Paris

Re: SSL browsing

Post by Schneider »

Thank you Octo.
All the best for 2016!

Cheers,
Pierre
User avatar
OCTO
Posts: 1738
Joined: 05 Oct 2015, 06:52
Location: Sweden

Re: SSL browsing

Post by OCTO »

It doesn't matter what browser you use as far as you use the encrypted protocol called https, for whatever site. When you see http it is unencrypted. When you visit a site, your connection to it bounces through usually more than 10 nodes worldwide. If it is un-encrypted, an attacker can read whatever goes between you and the site you visit. When it is encrypted, an attacker can see only what address you visit, and a block of encrypted "garbage"-text which is impossible to read.
Freelance Composer. Self-Publisher.
Finale 27.3 • Sibelius 2023.5• MuseScore 4+ • Logic Pro X+ • Ableton Live 11+ • Digital Performer 10+ /// MacOS Monterey (secondary in use systems: Fedora 35, Windows 10)
Locked