Free Republic
Browse · Search 		General/Chat
Topics · Post Article

To: Drago
probably trying to “force” https for FR

There is no need to "force" HTTPS for a site. The site can do it by itself.

E.g., try going to http://www.bankofamerica.com/. That's an insecure link. But before you know it, you will be looking at their HTTPS site. Initially, you will be connected to their insecure site, but it will quickly redirect to their secure site.

Think about it: if a bank depended on customers to type HTTPS, problems would develop instantly.

28 posted on 07/24/2017 2:17:51 AM PDT by cynwoody
[ Post Reply | Private Reply | To 22 | View Replies ]

To: cynwoody

Yep, https is “automatic”, but some browsers allow users to enable a setting to reject sites that aren’t https.


29 posted on 07/24/2017 2:39:23 AM PDT by Drago
[ Post Reply | Private Reply | To 28 | View Replies ]
To: cynwoody
Twitter and Google have allowed https connections for quite a while. It has helped me on Twitter a lot. I get a lot less browser lockups. I also use zero script plugin. Same issue.

Must be noted. If you are logged into a https connection and have a window open in a non https connection the non https connection is still visible and a vulnerability.

I use TLS (transport level security) on both my cell phone and this Linux box. SSH is not really that secure in itself.

There have been times I wished I had a VPN connection to the web.

32 posted on 07/24/2017 4:04:10 AM PDT by Texas Fossil ((Texas is not where you were born, but a Free State of Heart, Mind & Attitude!))
[ Post Reply | Private Reply | To 28 | View Replies ]

Free Republic
Browse · Search 		General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson