Would you like https login/browsing? I have been thinking about the possibility of https login and maybe even https browsing (depending on load).
I was wondering what you all thought and I figured it was a good excuse for a poll.
One thing to consider is browsing for you the user will be slower over https. Https would not be mandatory for login either as some users have that blocked. Registration would be secure as well if the login is secure.
Post your thoughts and vote away.
If the site involved throwing my personal information around or payments of any kind, I'd want to see HTTPS throughout but as a forum I'm not too concerned.
Yeh it was just a thought really. Its nice to have in some ways but not essential.
It might be good for getting around some LEAs who have aggressive keyword blocking.
Same as bizzel really i don't use these login details for anything else and donations are done through paypal so i don't really see a need unless the site started to provide other services that required sensitive information.
Nice to have for login, but not neccessary for browing I don't think. The load on the server isn't really worth it.
I would use it if it was available. But I wear a tinfoil hat and live in a faraday cage.
Want another option "Really don't want it"
Forums such as edugeek are slow enough as it is - doing anything else to slow it down would be madness (in my (not very) humble opinion :-))
Didn't think the forum was slow. If you did get HTTPS for the whole site and you had a dedi\colo server, you can get a cheap £30 SSL encryption card, it works upto 155mbs, you are ofcourse then limited to a select few of OS. Of course you can always got get the Sun \ Dell \whatever brand version that costs £££Originally Posted by srochford
Like I say it wouldnt be mandatory to ensure the speed of the site and some users have https blocked. I dont find the site slow here?
I'd probably use it for the web chat, rather than the forums.
How will SSL be 'opt-in'? Will there be some user preferences to control it? Or will the site simply honour the protocol you first connected with for that session?
Well for login it would simply probably be a checkbox/switch that does it. Site browsing, if enabled, could be linked to a profile preference or just a cookie.
Depends how you\there set it up. Ideally you want SSL for your login, however if you got some fool who's setup your firewall\content filtering to block all SSL then you still want the option to use basic.
IMHO I would have a Secure site and a non-secure site, basically exactly the same but one's HTTPS ones HTTP, you've have a button somewhere to switch, perhaps only HTTPS for members?
I'm not sure exactly what you can and can't do with the forum. I know you have issue with cookies, most have options to support SSL, I'm just not sure if they would force them.
I was recently at a conference and they were talking about security of information within your schools and how anything taken out externally of the school must be encrypted or with some kind of footer with a disclaimer on it. I'm not going to get into it because I could be here all day!
So with these new rules coming in from the government/BETCA you need to start https anything that has pupil information on.
Have a look at the link below if you want more information
Microsoft UK Schools News Blog : Data Security in schools ? rules tightened
I would opt for that at least the user still has the option of if they want https just for login or for login and surfing or neither.
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
LinkBack URL
About LinkBacks
Reply With Quote