If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)

Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie

Hi all,
Vanilla are planning an update to the site on April 24th (next Wednesday). It is a major PHP8 update which is expected to boost performance across the site. The site will be down from 7pm and it is expected to take about an hour to complete. We appreciate your patience during the update.
Thanks all.

HTTPS

Khannie · 2015-01-31 13:30:59

Could you enable HTTPS site wide please. I would be much obliged. :)

31-01-2015 2:30pm

#1

Khannie

Moderators, Technology & Internet Moderators Posts: 37,485 Mod ✭✭✭✭

Join Date: May 2004

Posts: 36063

Could you enable HTTPS site wide please. I would be much obliged.

25

Comments

#2 31-01-2015 7:18pm

Hotblack Desiato

Registered Users Posts: 33,856 ✭✭✭✭

Join Date: February 2005

Posts: 32562

+1. Hopefully in a few years, unencrypted protocols like HTTP will be a rarity, if not a thing of the past entirely.

Life ain't always empty.

0
#3 01-02-2015 1:12pm

Mr. G

Moderators, Technology & Internet Moderators Posts: 4,621 Mod ✭✭✭✭

Join Date: August 2010

Posts: 4191

+1. Especially with the PM section.

0
#4 02-02-2015 10:14am

Boards.ie: Chris

Closed Accounts Posts: 80 ✭✭

Join Date: October 2014

Posts: 80

It's on the list. Infrastructure there's and ready to go (I even have SPDY/whatever-buzzword-they-have-for-HTTP2.0-now support I want to roll out), but unfortunately the vBulletin codebase has not made it a simple task. I'll try and prod it up the list a little bit.

0
#5 02-02-2015 2:57pm

obsidianclock

Closed Accounts Posts: 158 ✭✭

Join Date: January 2015

Posts: 152

Yes please.

0
#6 02-02-2015 6:30pm

digitalninja

Registered Users Posts: 455 ✭✭

Join Date: May 2004

Posts: 414

it should be at the top of the list.

0
Advertisement
#7 02-02-2015 9:12pm

KoolKid

Moderators, Home & Garden Moderators, Technology & Internet Moderators Posts: 24,789 Mod ✭✭✭✭

Join Date: August 2006

Posts: 24128

+1 please.

0
#8 02-02-2015 9:41pm

Creamy Goodness

Registered Users Posts: 26,556 ✭✭✭✭

Join Date: November 2001

Posts: 25685

digitalninja wrote: »

it should be at the top of the list.

No it shouldn't.

Any information you on boards is in the public domain. With exception to the PM system and even then the most personal information you should be posting there is an email address or on rare occasions a mobile number.

Boards would be exceptionally low on the list of targets for eavesdroppers.

Far more important things for the guys/gals to be working on, like further boxing vBulletin into its long awaiting coffin.

This is a nice to have but by no means a "top of the list feature"

0
#9 03-02-2015 12:29pm

obsidianclock

Closed Accounts Posts: 158 ✭✭

Join Date: January 2015

Posts: 152

Creamy Goodness wrote: »

No it shouldn't.

Any information you on boards is in the public domain. With exception to the PM system and even then the most personal information you should be posting there is an email address or on rare occasions a mobile number.

Boards would be exceptionally low on the list of targets for eavesdroppers.

Far more important things for the guys/gals to be working on, like further boxing vBulletin into its long awaiting coffin.

This is a nice to have but by no means a "top of the list feature"

Particularly given when you close your account your posts remain!

0
#10 03-02-2015 12:37pm

digitalninja

Registered Users Posts: 455 ✭✭

Join Date: May 2004

Posts: 414

As you can see from here, I (and others) requested that they fix this over a year ago. They still haven't got to it. In my opinion that means they don't care about privacy at boards.ie http://www.boards.ie/vbulletin/showthread.php?p=87836009

0
#11 03-02-2015 12:57pm

Boards.ie: Chris

Closed Accounts Posts: 80 ✭✭

Join Date: October 2014

Posts: 80

digitalninja wrote: »

As you can see from here, I (and others) requested that they fix this over a year ago. They still haven't got to it. In my opinion that means they don't care about privacy at boards.ie http://www.boards.ie/vbulletin/showthread.php?p=87836009

It is on the list.

0
Advertisement
#12 03-02-2015 1:08pm

Creamy Goodness

Registered Users Posts: 26,556 ✭✭✭✭

Join Date: November 2001

Posts: 25685

obsidianclock wrote: »

Particularly given when you close your account your posts remain!

it's a discussion forum, ripping out posts from people whom close their accounts would be like ripping out pages of a novel.

digitalninja wrote: »

As you can see from here, I (and others) requested that they fix this over a year ago. They still haven't got to it. In my opinion that means they don't care about privacy at boards.ie http://www.boards.ie/vbulletin/showthread.php?p=87836009

doesn't mean that at all and you know it. Boards is a small company with tons of technical debt (vBulletin) if you have any experience with vBulletin you'd know that it really doesn't play well with things like this. This isn't a simple flick the switch and it's on everywhere type of problem.

Boards has HTTPS where it matters, sign up and sign in. I'm sure they'll get to having HTTPS on the rest of the site when they can.

0
#13 04-02-2015 10:30am

digitalninja

Registered Users Posts: 455 ✭✭

Join Date: May 2004

Posts: 414

shouldn't have said "don't care" it just doesn't seem very high on the priority list, that's a shame.

0
#14 04-02-2015 11:39am

28064212

Registered Users Posts: 10,455 ✭✭✭✭

Join Date: May 2005

Posts: 9740

Creamy Goodness wrote: »

Boards has HTTPS where it matters

Debatable. I'm pretty sure Boards is vunerable to cookie hijacking i.e. I grab your authentication cookie (sent in the clear with every HTTP request), put the cookie on my machine, on my next request I'm logged in as you.

Boardsie Enhancement Suite - a browser extension to make using Boards on desktop a better experience (includes full-width display, keyboard shortcuts, and dark mode). Now available through the extension stores
Firefox: https://addons.mozilla.org/addon/boardsie-enhancement-suite/
Chrome/Edge/Opera: https://chromewebstore.google.com/detail/boardsie-enhancement-suit/bbgnmnfagihoohjkofdnofcfmkpdmmce

0
#15 18-06-2015 11:21am

Khannie

Moderators, Technology & Internet Moderators Posts: 37,485 Mod ✭✭✭✭

Join Date: May 2004

Posts: 36063

Bit of a bump on this. Recent announcements from wikipedia and reddit that they're going HTTPS only. Any chance we could see boards add HTTPS?

28064212 wrote: »

Debatable. I'm pretty sure Boards is vunerable to cookie hijacking i.e. I grab your authentication cookie (sent in the clear with every HTTP request), put the cookie on my machine, on my next request I'm logged in as you.

I'm almost certain that's the case, but I haven't tested it.

0
#16 18-06-2015 11:25am

digitalninja

Registered Users Posts: 455 ✭✭

Join Date: May 2004

Posts: 414

but if you've nothing to hide, why on earth would you need HTTPS?
Better to throw resources at building adverts.ie.

0
#17 18-06-2015 11:45am

Khannie

Moderators, Technology & Internet Moderators Posts: 37,485 Mod ✭✭✭✭

Join Date: May 2004

Posts: 36063

digitalninja wrote: »

but if you've nothing to hide, why on earth would you need HTTPS?

This is flawed on many levels. Privacy and security should be the norm, not the other way around. Here's a good article on the "I have nothing to hide" fallacy.

digitalninja wrote: »

Better to throw resources at building adverts.ie.

Obviously I disagree here.

0
#18 18-06-2015 11:46am

digitalninja

Registered Users Posts: 455 ✭✭

Join Date: May 2004

Posts: 414

your sarcasm detector is malfunctioning

0
#19 18-06-2015 11:53am

Khannie

Moderators, Technology & Internet Moderators Posts: 37,485 Mod ✭✭✭✭

Join Date: May 2004

Posts: 36063

HAHAHA. BALLS. You got me good.

0
#20 24-06-2015 2:41pm

Boards.ie: Chris

Closed Accounts Posts: 80 ✭✭

Join Date: October 2014

Posts: 80

Khannie wrote: »

Bit of a bump on this. Recent announcements from wikipedia and reddit that they're going HTTPS only. Any chance we could see boards add HTTPS?

The new front end is being built with this as one of the core considerations. It's hoped we can get that rolled out in the very near future.

digitalninja wrote: »

Better to throw resources at building adverts.ie.

Adverts.ie hasn't been a part of Boards.ie for a number of years and neither has it's development concerns.

0
#21 25-06-2015 12:44pm

Khannie

Moderators, Technology & Internet Moderators Posts: 37,485 Mod ✭✭✭✭

Join Date: May 2004

Posts: 36063

Boards.ie: Chris wrote: »

The new front end is being built with this as one of the core considerations. It's hoped we can get that rolled out in the very near future.

Great. Thanks.

0
Advertisement
#22 27-04-2016 12:12pm

Khannie

Moderators, Technology & Internet Moderators Posts: 37,485 Mod ✭✭✭✭

Join Date: May 2004

Posts: 36063

Bump.

0
#23 04-11-2016 10:57am

Boards.ie: Mark

Boards.ie Employee Posts: 5,461 ✭✭✭✭✭

Boards.ie Employee

Join Date: September 2016

Posts: 4877

The Responsive Site is all HTTPS. The Legacy Site however uses Javascript files that are only available on HTTP. It doesn't seem likely that Legacy will be ported to HTTP.

How can I? User's guide to some features on the new site

0

HTTPS

Comments

Leave a Comment