Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3
What does this tag do
1007 posts

Uber Geek
+1 received by user: 216

Subscriber

  # 1713308 31-Jan-2017 15:08
Send private message

Behodar:

 

In many cases there is no need for HTTPS anyway - take the MetService site as an example. Weather data is hardly a secret!

 

 

Yes, as long as on a trusted internet connection still. Where it becomes important on unimportant websites is when you get carriers injecting Javascript or other malicious parties!


6557 posts

Uber Geek
+1 received by user: 1278

Trusted
Lifetime subscriber

  # 1713309 31-Jan-2017 15:11
Send private message

But does HTTPS solve the problem? As noted in an earlier post, Chrome and IE were both happily letting an MITM attack through.


 
 
 
 


22052 posts

Uber Geek
+1 received by user: 4680

Trusted
Subscriber

  # 1713312 31-Jan-2017 15:22
Send private message

Behodar:

 

But does HTTPS solve the problem? As noted in an earlier post, Chrome and IE were both happily letting an MITM attack through.

 

 

That will be because the certs for the MITM virus scanning/check the staff are not slacking off box will be installed on the PC's thru their membership to the businesses domain etc. Firefox does its own cert management so is not configured with the businesses certs so alerts.





Richard rich.ms

BDFL - Memuneh
63304 posts

Uber Geek
+1 received by user: 13840

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1713465 31-Jan-2017 18:16
One person supports this post
Send private message

Guess what? Just got off a Skype call with our second ad network and they now support HTTPS. I will change their ads to HTTPS and test for a while. If this is working ok I can switch the domain to HTTPS - mind you this will break third-party non HTTPS images (mixed content) and people will get pissed off... This is not someting that can happen overnight though. We need to change Google Webmasters/Search to point to the new domain, we have to implement a 301 redirect to make sure we don't lose search ranking and we have to do a few other things to make sure things just work.

 

Bear with me.







1508 posts

Uber Geek
+1 received by user: 213


  # 1713509 31-Jan-2017 20:26
Send private message

Thanks Freitasm for being so willing to discuss things like this. I find it really interesting to get a first hand look at what goes into these kind of decisions. By all means take your time, I am not worried about the unencrypted notification for Geekzone personally.





Try Vultr using this link and get us both some credit:

 

http://www.vultr.com/?ref=7033587-3B


BDFL - Memuneh
63304 posts

Uber Geek
+1 received by user: 13840

Administrator
Trusted
Geekzone
Lifetime subscriber

Mr Snotty
8588 posts

Uber Geek
+1 received by user: 4492

Moderator
Trusted
Lifetime subscriber

  # 1713573 31-Jan-2017 22:10
Send private message

@freitasm could do a page rule under Cloudflare to set http://*.geekzone.co.nz/* to "always use HTTPS" along with setting up HSTS on the whole Geekzone domain. Should take care of the Google aspects...

This does however mean literally everything on Geekzone has to have a valid SSL certificate and by enforcing HSTS on the whole domain will cause broken images for anything embedded without HTTPS - could do a find and replace on the database but still a massive mess in a forum environment to resolve.




BDFL - Memuneh
63304 posts

Uber Geek
+1 received by user: 13840

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1713586 31-Jan-2017 22:21
Send private message

There's more to it than that. There's Geekzone Prices, Geekzone Mobile. Then there is Mixed Content where people upload images using their own/third party servers. HSTS is not a good idea for this. It's more complicated than that.

 

AS I said News/Reviews is now on HTTPS, currently as a redirect (which is needed so Google can find it). Remember http://www.geekzone.co.nz and https://www.geekzone.co.nz are different sub-domains - regardless of name, the protocol being different then the domains are different and Google will consider HTTPS Geekzone a new domain, with no links, etc. SEO works like that.





1643 posts

Uber Geek
+1 received by user: 175

Trusted

  # 1713629 1-Feb-2017 07:17
Send private message

Glad to see the move to https! well done

 

live.geekzone.co.nz has been https for as long as I can remember as well





CPU: Intel 3770k| RAM: F3-2400C10D-16GTX G.Skill Trident X |MB:  Gigabyte Z77X-UD5H-WB | GFX: GV-N660OC-2GD gv-n660oc-2gd GeForce GTX 660 | Monitor: Qnix 27" 2560x1440

 

 


438 posts

Ultimate Geek
+1 received by user: 243

Subscriber

  # 1713638 1-Feb-2017 07:45
Send private message

Huh. The SEO mess is unusual, as Google has been pushing webmasters pretty hard to change to HTTPS, including giving a ranking boost to https pages. Surely they wouldn't cause a ranking drop just from switching.


BDFL - Memuneh
63304 posts

Uber Geek
+1 received by user: 13840

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1713648 1-Feb-2017 07:55
Send private message

mentalinc:

 

Glad to see the move to https! well done

 

live.geekzone.co.nz has been https for as long as I can remember as well

 

 

Geekzone Live and Geekzone Jobs (now retired) were HTTPS for a very long time. The content page is now HTTPS so that's going to stay - it's a testbed for the ad networks compliance. Once we know it's working fine then we can possibly move the forums - the worst case scenario is that the page and Geekzone contents - including cookies - will be encrypted but not third party so you get a mixed content warning and third party content won't appear (images).

 

ripdog:

 

Huh. The SEO mess is unusual, as Google has been pushing webmasters pretty hard to change to HTTPS, including giving a ranking boost to https pages. Surely they wouldn't cause a ranking drop just from switching.

 

 

Not unusual. They are different domains. If you look at Google Search Console they have independent controls, crawling and backlinks.





1643 posts

Uber Geek
+1 received by user: 175

Trusted

  # 1713656 1-Feb-2017 08:11
Send private message

and in further news today, lets look forward to geekzone joining the secure half of the Internet.

 

https://www.wired.com/2017/01/half-web-now-encrypted-makes-everyone-safer/





CPU: Intel 3770k| RAM: F3-2400C10D-16GTX G.Skill Trident X |MB:  Gigabyte Z77X-UD5H-WB | GFX: GV-N660OC-2GD gv-n660oc-2gd GeForce GTX 660 | Monitor: Qnix 27" 2560x1440

 

 


BDFL - Memuneh
63304 posts

Uber Geek
+1 received by user: 13840

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1713661 1-Feb-2017 08:15
Send private message

Here's a number that will boggle your mind: in December 2016 we had 44% of requests served over HTTPS already (9,137,964 SSL secured requests and 11,442,326 unsecured requests) according to Cloudflare.

 

"Requests" as in hits, not pages served (different things). This means page source (HTML), images, CSS, scripts. This will go up a bit in February with us moving the content pages to SSL. 





BDFL - Memuneh
63304 posts

Uber Geek
+1 received by user: 13840

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1714132 1-Feb-2017 20:03
Send private message

I switched SSL ON for our forums pages for a few minutes today:

 

 

Anyway, still playing with things around. In the last 24 hours served more SSL request than non-SSL (that's because I moved all ads to SSL, which means defaults requests also use SSL).

 





1358 posts

Uber Geek
+1 received by user: 319


  # 1714139 1-Feb-2017 20:14
Send private message

Is it the site still accessible under Windows XP?

 

 

Don't want to be in a similar situation to the Xtra email upgrades :P

1 | 2 | 3
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

HPE to acquire supercomputing leader Cray
Posted 20-May-2019 11:07


Techweek starting around NZ today
Posted 20-May-2019 09:52


Porirua City Council first to adopt new council software solution Datascape
Posted 15-May-2019 12:00


New survey provides insight into schools' technology challenges and plans
Posted 15-May-2019 09:30


Apple Music now available on Alexa devices in Australia and New Zealand
Posted 15-May-2019 09:11


Make a stand against cyberbullying this Pink Shirt Day
Posted 14-May-2019 20:23


Samsung first TV manufacturer to launch the Apple TV App and Airplay 2
Posted 14-May-2019 20:11


Vodafone New Zealand sold
Posted 14-May-2019 07:25


Kordia boosts cloud performance with locally-hosted Microsoft Azure ExpressRoute
Posted 8-May-2019 10:25


Microsoft Azure ExpressRoute in New Zealand opens up faster, more secure internet for Kiwi businesses
Posted 8-May-2019 09:39


Vocus Communications to deliver Microsoft Azure Cloud Solutions through Azure ExpressRoute
Posted 8-May-2019 09:25


Independent NZ feature film #statusPending to premiere during WLG-X
Posted 6-May-2019 22:13


The ultimate dog photoshoot with Nokia 9 PureView #ForgottenDogsofInstagram
Posted 6-May-2019 09:41


Nokia 9 PureView available in New Zealand
Posted 6-May-2019 09:06


Motorola Solutions joins local partners to deliver advanced communications network in New Zealand
Posted 30-Apr-2019 21:50



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.