SSL browsing

News about Notat.io. Comments and suggestions for the site.
Locked
User avatar
OCTO
Posts: 1082
Joined: 05 Oct 2015, 06:52
Location: Sweden

SSL browsing

Post by OCTO » 18 Dec 2015, 12:46

Now it is installed the SSL certificate, which encrypts your traffic to the forum. While nothing is so particularly private and secret on this forum, login-in and sending passwords over the HTTP is completely insecure (prone to man in the middle attack).

If you don't want to install the certificate you can always use HTTP (at least be sure than you DO NOT use the same password to your e-mail!).

If you wish to use HTTPS than you have explicitly allow notat.io cert to be installed. Go to https://notat.io
You will get this in Firefox:
Screen shot 2015-12-18 at 1.47.10 PM.png
Screen shot 2015-12-18 at 1.47.10 PM.png (65.03 KiB) Viewed 2060 times
And than you have to confirm:
Screen shot 2015-12-18 at 1.47.17 PM.png
Screen shot 2015-12-18 at 1.47.17 PM.png (56.31 KiB) Viewed 2060 times

User avatar
Schneider
Posts: 58
Joined: 09 Oct 2015, 06:50
Location: Paris

Re: SSL browsing

Post by Schneider » 26 Dec 2015, 14:04

Thank you Octo.
All the best for 2016!

Cheers,
Pierre
~Pierre

User avatar
OCTO
Posts: 1082
Joined: 05 Oct 2015, 06:52
Location: Sweden

Re: SSL browsing

Post by OCTO » 13 Jan 2016, 05:12

It doesn't matter what browser you use as far as you use the encrypted protocol called https, for whatever site. When you see http it is unencrypted. When you visit a site, your connection to it bounces through usually more than 10 nodes worldwide. If it is un-encrypted, an attacker can read whatever goes between you and the site you visit. When it is encrypted, an attacker can see only what address you visit, and a block of encrypted "garbage"-text which is impossible to read.
Freelance Composer. Self-Publisher.
Finale 25 • Sibelius 8 • MuseScore 2 • Logic Pro X • Ableton Live 9 • Digital Performer 9 /// OS X El Capitan, (side system: Debian 9, Windows 7)

Locked