Jump to content

Full SSL support

Makoto

By Makoto
in Technical Problems

Recommended Posts

  • Replies 90
  • Created
  • Last Reply
Rhett Mentor

Rhett

Posted
Posted

I could use SSL for my entire website, but I read on my ssl specification (hostgator) that it's not compatible with mobile.

So, what happens if somebody wants to visit my world-most-secure-useless-forum from he's mobile phone ?

This seems to be something specific to hostgator, there shouldn't be any differences with a mobile user and ssl in normal situations. Mobile devices do throw an error if you don't have an intermediate certificate setup though, so perhaps they don't include that for some reason on the free ssl cert offering. You would have to check with hostgator though to have them clarify.

Link to comment
Share on other sites
Rhett Mentor

Rhett

Posted
Posted

To reduce mixed-content warnings from insecure assets, Invision should SSL proxy assets.

Example: https://github.com/blog/743-sidejack-prevention-phase-3-ssl-proxied-assets

This requires server side configuration and setup that is not likely to be available with most hosting providers.

"On the backend we wrote a simple HTTP proxy in nodethat runs behind our normal nginx setup."
Link to comment
Share on other sites
action-reaction Enthusiast

action-reaction

Posted
Posted

It appears that google now gives a little advantage to https websites.

And it's better for boards using IP.Nexus.

This should be a default option in the ACP : "do you want to run your entire board with HTTPS ? Yes or No".

That's all, I don't want to operate with the paths, the files etc... There is always a problem somewhere, someday.

Link to comment
Share on other sites
Dmacleo Mentor

Dmacleo

Posted
Posted

This requires server side configuration and setup that is not likely to be available with most hosting providers.

"On the backend we wrote a simple HTTP proxy in nodethat runs behind our normal nginx setup."

would be nice to know how to though (and have it work with ipb if needed) for dedicated/vps users.

wondering if tht affects speeds though.

any thoughts?

Link to comment
Share on other sites
Rhett Mentor

Rhett

Posted
Posted

would be nice to know how to though (and have it work with ipb if needed) for dedicated/vps users.

wondering if tht affects speeds though.

any thoughts?

Honestly it wouldn't be my personal preference as it's skirting around the insecure content issue, making it appear secure when it's actually not. To me is tricking your users to make them think the page is 100% secure.

Link to comment
Share on other sites
Dmacleo Mentor

Dmacleo

Posted
Posted

yeah but its a damned if you do/don't issue.

if you block all non-ssl embeds you get complaints.

you allow it you get complaints.

the complaints over the browser warning actually seem to me more of an issue as users think something is drastically wrong.

right now I am not https (for the week, doing stuff) but I think when I re-enable I will just do it for store and logins. about the only way to avoid confusion and is better than nothing.

Link to comment
Share on other sites
Peter Parker Explorer

Peter Parker

Posted
Posted

google just included https as a positive ranking factor in their SERP algorithm. Don't be surprised if you dont start hearing more about this in support tickets as news speads, and the possibility of google increasing importance of ssl.

they will probably open their own certificate business soon :lol:

Link to comment
Share on other sites
Rhett Mentor

Rhett

Posted
Posted

google just included https as a positive ranking factor in their SERP algorithm. Don't be surprised if you dont start hearing more about this in support tickets as news speads, and the possibility of google increasing importance of ssl.

they will probably open their own certificate business soon laugh.png

They just launched google domains beta, so you are correct. :)

Link to comment
Share on other sites
  • 1 year later...

Archived

This topic is now archived and is closed to further replies.

Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Invision Community © 2024 IPS, Inc.
×
×
  • Create New...