Beefy Boxes and Bandwidth Generously Provided by pair Networks
Pathologically Eclectic Rubbish Lister
 
PerlMonks  

Your connection is not secure

by snopal (Pilgrim)
on Jan 17, 2018 at 20:51 UTC ( #1207428=monkdiscuss: print w/replies, xml ) Need Help??

Of late I have observed that my https connections to perlmonks.org and www.perlmonks.org are providing me with the titled 'not secure' notice.

It appears to switch between both host names... https://perlmonks.org will be ok and https://www.perlmonks.org will not, and then other times the reverse is true. Knowing this, I can switch my URL domain name and not get the message, but this is incompatible with any bookmark I define. Sometimes it is secure, sometimes it is not. I change my bookmark and get similar results.

I'm not complaining, as I have a quick fix every time I see it. However, it could be confusing users relying on search engine links into the sites if they happen to use the more frequently mandated 'https' protocol.

Replies are listed 'Best First'.
Re: Your connection is not secure
by Perl300 (Pilgrim) on Mar 19, 2018 at 18:28 UTC

    I just wanted to inform. I don't know much about this stuff so can't say/suggest anything. And I must mention here that I am already thankful to all the volunteers who keep PM up and running.

    I found this thread when I was facing same problem and searched for more details without logging on to PM. I get "Your connection is not secure" for both the https://perlmonks.org and https://www.perlmonks.org from chrome & Firefox.

Re: Your connection is not secure
by Anonymous Monk on Feb 14, 2018 at 14:37 UTC
    Chrome and other browser vendors have said that starting in July they will call-out any site that isn't secure. PerlMonks should do what everyone else has already done and provide a permanent-redirect to its https equivalent. There is no longer any cost for a valid certificate. The necessary changes to the site configuration should take less than ten minutes.

      Non sequitur. A browser calling attention to insecure connection is one thing. Https-only "internet" is a completely different matter.

      The necessary changes to the site configuration should take less than ten minutes.

      Please shut your pie-hole, Mike. You have zero idea. Basta.

      By the way... Three replies to the same root node, saying essentially the same (stupid) stuff, two of which are anonymous? You've got a problem, man.

Re: Your connection is not secure
by Anonymous Monk on Feb 06, 2018 at 23:21 UTC
    Personally, I think that it is long overdue for perlmonks.org to follow what is obviously now "the New Normal":   an SSL-only site.   (If WikiPedia has already done it, so can we.)   A free SSL-certificate from letsencrypt.org would do nicely.   We are very-clearly "behind the cue-ball" on this . . . the expectations of the web community have changed.
      1. What's this we business? AnonymousMonks are nobody I know.
      2. This is a free, volunteerism site. Wikipedia has a SIXTY MILLION PLUS DOLLAR ANNUAL BUDGET.
      3. The site already has an SSL cert so your advice, as isAlways The cAsE, is as wrong as it is lazy.

      Thanks for volunteering. Reach out to pmdev ASAP.

Re: Your connection is not secure
by sundialsvc4 (Abbot) on Feb 28, 2018 at 02:11 UTC

    Pardon me, but ... if WikiPedia has already done this, so can PerlMonks.

    It is very-obviously becoming the expected standard that all web-sites should be delivered by https: by default, and that they should permanently-redirect all http: requests to the foregoing.   PerlMonks should obviously and immediately follow suit.

    As Anonymous has already stated, this step no longer requires any cost:   TLS/SSL certificates are now free.   Therefore, the mechanics of the actual step are purely perfunctory – and yet, very important.   The owners of this site need to simply “get ’er done.”

      'The owners of this site need to simply “get ’er done"'

      As always, you don't practice what you preach, your awful website doesn't have https support,

      Your connection is not private Attackers might be trying to steal your information from www.sundialse +rvices.com (for example, passwords, messages or credit cards). Learn +more This server could not prove that it is sundialservices.com; its securi +ty certificate is from www.weebly.com. This may be caused by a miscon +figuration or an attacker intercepting your connection.

      More proof, if any where required, that nobody should engage your expertise.

      Update: more detail.

Re: Your connection is not secure
by sundialsvc4 (Abbot) on Mar 08, 2018 at 03:55 UTC

    “Gentlebeings™, puh-leeuze!”   This is rather embarrassing.

    No matter what a handful of you seem to think about me, or for that matter about your oh-so precious website that has not received a single cosmetic face-lift in a decade, what the OP – and I – am describing, is a trivially-simple thing.   (If WikiPedia can do it, so can you.)

    Today, all web-sites are expected to be https.   (Yes, my own web-site presently “sucks large” too, but this is about to change and in any case it is beside the point.)   Certificates are now free, and the necessary changes to nginix or Apache should take all of about twenty minutes.   It would take much less time to implement the change than to further discuss it.

      So, your point seems to be that you took the time you could have fixed your site to repeat three times that since a site with paid developers and a budget edging up on a hundred million dollars a year can do it, PerlMonks with free hosting and purely volunteer devs should drop everything to do the same. And your manifold inability to do what you constantly coach others is easy is not beside the point at all.

      All web-sites? ALL? You're lowering the bar SO LOW to proving you wrong. You really must go back to being so vague that anyone who doesn't know you might give enough benefit of the doubt to interpret your generic horseshite as accurate since the reader actually knows what she's doing and reads into what you never actually wrote.

      Parting shot: 30 is not a "handful" in any dictionary in any language in the history of the world.

      Certificates are now free

      Free as in free lunch? So is the cheese in a mousetrap.

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: monkdiscuss [id://1207428]
Approved by Discipulus
help
Chatterbox?
and all is quiet...

How do I use this? | Other CB clients
Other Users?
Others cooling their heels in the Monastery: (5)
As of 2018-05-22 20:09 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    Notices?