Comments and Suggestions Thread, SSL Support in EduGeek Stuff; Would it be possible to allow browsing of the site over SSL (HTTPS)? I am aware there's real money and ...
11th February 2013, 01:15 PM #1
Would it be possible to allow browsing of the site over SSL (HTTPS)? I am aware there's real money and server resource costs in this.
11th February 2013, 03:12 PM #2
I would like HTTPS but there are quite a lot of issues if you switch from http to https, namely speed and browser access. Server load wouldnt be too bad with our newest network design but those on mobile devices, slow connections, older browsers and https blocked schools would have issues straight off.
IE still blocks non https images/content as well which means the cdn's we use need to move to https as well, its possible to do this but if people insert images etc they will be broken unless people hit the load unsecured content button.
Running both modes has a problem where google can get pretty inflamed by duplicate content as well and you are not really securing anything when you can still get cookie leakage via http calls. Https login would be nice but likewise you dont stop cookie sniffing anyway as soon as you get back to http. We had https login in v3 of vbulletin but when we went to 4 it didnt work well any more and vbulletin had said they were coming up with a solution which has become vapour-ware.
Last edited by ZeroHour; 11th February 2013 at 03:17 PM.
11th February 2013, 03:20 PM #3
I think SSL login + optional (user preference) SSL browsing for logged in users would be the right direction then? That gets round all the issues you cite?
By DaveP in forum General Chat
Last Post: 21st August 2009, 03:11 PM
By FITS in forum School ICT Policies
Last Post: 3rd March 2009, 09:38 AM
By FITS in forum Courses and Training
Last Post: 8th September 2005, 02:24 PM
By russdev in forum General EduGeek News/Announcements
Last Post: 6th August 2005, 02:59 PM
Last Post: 29th June 2005, 12:43 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)