Originally posted by: MrWunderfulOriginally posted by: Sorn
I'm sorry, is there not a buyers and sellers forum hosted here? Do people not engage on trade, which is promoted by the site via hosting the subforums?
Even if it wasn't a marketplace it's 2017 dude. I setup SSL on Apache when I was 18 years old in 2002.
Are you really going to take that route? How embarrassing.....
In regards to SSL vs to, yes, SSL is a common term and people actually do use it to mean tls 1.1/1.2 ....old habits die hard. Yes, to 1.2 would be the preferred crypto.
People exchange personal information, addresses, phone numbers and yes bank information over this site. You can expect such communication on any online marketplace.
And let's not be stupid guys. People commonly sell items on here worth more than cars. Don't be dense and pretend there are not large financial transactions going on here.
The admin should take some responsibility and do the absolute minimum to protect it's users security. If he really cannot do it and needs help, I would be happy to help. I'm not just a complainer, I'm more than willing to provide the labor and solutions if needed. But I sincerely doubt he is incapable of setting up https on the forums.....
Who is going to pay for all that considering that NA lets people buy and sell here for no cost? Dont forget this site is run off donated time and money.
maybe if security is such a concern for you, you handle your communications outside the site. Many people have been dealing here for years with no issue. I agree internet security is of concern, but the way your brought up the idea was confrontational.
Do you even read what people write before responding?
I already stated I would pay for it if it's such a problem. Setting up tls is not a 5 year engineering project dude, it's a routine quick patch. You do realize that you can setup https by default when configuring your webserver....?
It sounds like a lot of people who have no IT experience want to "defend" the undefendable. At no time should anyone ever not have privacy by default. The argument is never "why should we have this".....it's "why would we ever not have this".
When you are having a private conversation in your home, do you always put a microphone connected to a louspeaker and blare it to the neighborhood? Because that's what you are doing when you communicate on http. Asking for your private conversations *to actually be private* is not some outlandish request.
Don't argue against your best interests people.
As for being "confrontational", sorry it's a hot topic for me and I feel passionate about it. As stated, I'm here to help if needed. Hopefully that takes some sting out of my bluntness. I see the lack of https as a affront to individual sovereignty, so I take it seriously. Sure, I could go somewhere else.....if that's what you and the owner really want? I would think that's not the case however. Usually people create sites so that people will come, not the opposite.