Welcome to ECCIE, become a part of the fastest growing adult community. Take a minute & sign up!

Welcome to ECCIE - Sign up today!

Become a part of one of the fastest growing adult communities online. We have something for you, whether you’re a male member seeking out new friends or a new lady on the scene looking to take advantage of our many opportunities to network, make new friends, or connect with people. Join today & take part in lively discussions, take advantage of all the great features that attract hundreds of new daily members!

Go Premium

Go Back   ECCIE Worldwide > General Interest > Technical Questions
test
Technical Questions Even the most computer-savvy may have technical questions regarding navigation of the site. Ask it here! If you have an answer, be our guest! (For further assistance, contact your local moderator or see the "Emails to the Staff" post in the Questions for the Staff city forums)

Most Favorited Images
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
Most Liked Images
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
  • Thumb
Top Reviewers
cockalatte 650
MoneyManMatt 490
Jon Bon 401
Still Looking 399
samcruz 399
Harley Diablo 377
honest_abe 362
DFW_Ladies_Man 313
Chung Tran 288
lupegarland 287
nicemusic 285
Starscream66 282
You&Me 281
George Spelvin 270
sharkman29 256
Top Posters
DallasRain70825
biomed163710
Yssup Rider61274
gman4453363
LexusLover51038
offshoredrilling48821
WTF48267
pyramider46370
bambino43221
The_Waco_Kid37418
CryptKicker37231
Mokoa36497
Chung Tran36100
Still Looking35944
Mojojo33117

Reply
 
Thread Tools
Old 06-18-2014, 02:38 PM   #1
YouTellMe
Gaining Momentum
 
Join Date: Jul 27, 2013
Location: DFW
Posts: 47
Encounters: 14
Default Why no https?

Due to the nature of this site, personal and technical security are of the utmost priority. Given what we found out with the Snowden releases, is that the government IS reading traffic to webistes. So it shocks me to find that ECCIE has not enabled SSL everywhere. What this means for you non techies out there, is that anyone with a network sniffer between your browser and ECCIE's servers can see exactly what you are posting, as it is not encrypted. If ECCIE decides to turn on SSL, then all of that traffic is encrypted.

Givent he costs of SSL certs are so low, my basic question is WHY isn't ECCIE using it by default? Everyone one of our identities, conversations, etc are at risk.
YouTellMe is offline   Quote
Old 06-18-2014, 03:24 PM   #2
FoulRon
Valued Poster
 
FoulRon's Avatar
 
Join Date: Apr 21, 2014
Location: Austin, TX
Posts: 1,306
Encounters: 15
Default

Probably for the same reason they don't have a robots.txt file.
FoulRon is offline   Quote
Old 06-18-2014, 04:38 PM   #3
Gotyour6
Valued Poster
 
Gotyour6's Avatar
 
Join Date: Dec 24, 2010
Location: .
Posts: 9,775
Encounters: 24
Default

Anyone can see what you are writing on here anyway.
It's a public forum.

Set up Privoxy or hamachi if you wear tinfoil
Gotyour6 is offline   Quote
Old 06-18-2014, 10:13 PM   #4
PhantomofTheOpera
Valued Poster
 
Join Date: Apr 30, 2010
Location: second star to the right, and straight on till morning
Posts: 570
Default

Better yet, use TOR.
PhantomofTheOpera is offline   Quote
Old 06-22-2014, 09:49 AM   #5
DangedDragon
Gaining Momentum
 
DangedDragon's Avatar
 
Join Date: May 27, 2014
Location: USA and/or Philippines
Posts: 53
Default

You could also use a VPN connection to another part of the USA, so it appears your traffic is located in another area. Your traffic from your PC to the VPN server would be unreadable...

Cyberghost's free option works fairly well for most things.
DangedDragon is offline   Quote
Old 07-05-2014, 04:49 PM   #6
GneissGuy
Thank God it's Firday!
 
GneissGuy's Avatar
 
Join Date: Dec 12, 2009
Location: Austin, TX
Posts: 2,698
Encounters: 12
Default

Quote:
Originally Posted by Gotyour6 View Post
Anyone can see what you are writing on here anyway.
It's a public forum.

Set up Privoxy or hamachi if you wear tinfoil
Without https, snoops can see your passwords, and any PM's you send. They can also see which posts you read. They can also see your IP address.

In this case, "snoops" includes

  • Anyone within WiFi range if you're on a public hotspot, including hotels.
  • Your ISP
  • Anyone with access (legal or illegal) to the network at any one of the links in the internet between you and the website you're going to.
  • Anyone with a bogus WiFi hotspot you connect to. These are getting common at places like restaurants, airports, etc.
GneissGuy is offline   Quote
Old 07-07-2014, 06:07 AM   #7
jframe2
Valued Poster
 
jframe2's Avatar
 
Join Date: Aug 5, 2010
Location: World Citizen
Posts: 886
Default

@ the OP- things are only at risk if you allow your Tech/Comm security to be lax.

What can anyone prove using information from a Fantasy site, with people using fake names, and writing fiction? Nothing! Now if your Security is lax, it may lead to other problems, but that is on you the Hobbiest.

HTTPS is absolutely justified and required in certain internet scenarios and transactions, but this does not have to be one of them.

Be more concerned with one's own local vulnerabilities on their own computer.
jframe2 is offline   Quote
Old 12-23-2015, 07:10 PM   #8
ravishme
Registered Member
 
ravishme's Avatar
 
Join Date: Dec 24, 2013
Location: USA
Posts: 13
Encounters: 7
Default HTTPS really should be the default everywhere...

The general thinking is that https should be the default everywhere, since people leak clues about themselves in lots of not-including-credit-card-number web activity that puts them at risk from criminals, et alia. All websites should really be using TLS all the time, especially considering the overhead isn't all that high and certificates can range from inexpensive to free (the latter in fairly restrictive cases, but still).

All sites using user/password credential SHOULD use HTTPS, period.

Using VPN or whatever alone isn't enough, security benefits enormously from having layers, since every layer tends to be somewhat permeable.

jframe2, you are seriously on the wrong end of things at the moment, since every one of your four sentences is essentially wrong.

* Things are always at risk, even if your security is robust
* Lots of things can be inferred about people from what people write, even if the idea is that security doesn't matter, which obviously isn't correct on Eccie.
* HTTPS is absolutely justified in almost all cases, there are few circumstances where it isn't, and Eccie isn't one of them.
* HTTPS protect against vulnerabilities of a certain class on the network, which has nothing to do with your own computer, and which isn't fully addressed by VPNs.
ravishme is offline   Quote
Old 08-21-2016, 07:06 PM   #9
guynmotion
Registered Member
 
guynmotion's Avatar
 
Join Date: Aug 13, 2016
Location: DFW
Posts: 6
Encounters: 2
Default

Quote:
Originally Posted by ravishme View Post
The general thinking is that https should be the default everywhere, since people leak clues about themselves in lots of not-including-credit-card-number web activity that puts them at risk from criminals, et alia. All websites should really be using TLS all the time, especially considering the overhead isn't all that high and certificates can range from inexpensive to free (the latter in fairly restrictive cases, but still).

All sites using user/password credential SHOULD use HTTPS, period.

Using VPN or whatever alone isn't enough, security benefits enormously from having layers, since every layer tends to be somewhat permeable.

jframe2, you are seriously on the wrong end of things at the moment, since every one of your four sentences is essentially wrong.

* Things are always at risk, even if your security is robust
* Lots of things can be inferred about people from what people write, even if the idea is that security doesn't matter, which obviously isn't correct on Eccie.
* HTTPS is absolutely justified in almost all cases, there are few circumstances where it isn't, and Eccie isn't one of them.
* HTTPS protect against vulnerabilities of a certain class on the network, which has nothing to do with your own computer, and which isn't fully addressed by VPNs.
Right on. The login function alone warrants using HTTPS. I wish a site admin would chime in on this.
guynmotion is offline   Quote
Old 08-21-2016, 09:49 PM   #10
want2c
Valued Poster
 
want2c's Avatar
 
Join Date: Nov 8, 2013
Location: okc
Posts: 1,264
Encounters: 33
Default

Quote:
Originally Posted by Gotyour6 View Post
Anyone can see what you are writing on here anyway.
It's a public forum.

Set up Privoxy or hamachi if you wear tinfoil



Https at sign in but Http for the rest of the site


want2c is offline   Quote
Old 11-28-2016, 03:01 AM   #11
Aliased
Registered Member
 
Join Date: Apr 26, 2012
Location: Texas
Posts: 3
Default

Quote:
Originally Posted by guynmotion View Post
Right on. The login function alone warrants using HTTPS. I wish a site admin would chime in on this.
It's really beyond irresponsible at this point to not require this sensitive server to require a TLS connection. I mean the technology is only ~18 years old now, and it amounts to flipping a bit in most server applications. Why is this not being done? Are they looking for a competitor to fill this trivially-remedied security void?
Aliased is offline   Quote
Reply



AMPReviews.net
Find Ladies
Hot Women

Powered by vBulletin®
Copyright © 2009 - 2016, ECCIE Worldwide, All Rights Reserved