FearLess Cheat Engine

I suggest to add an SSL certificate for this website so it supports https:// connections.

Supposedly there are some free options for ssl certificates now (like [Link]) but that's pretty much all I know on the subject lol

Sounds like a good idea, but then I really don't know anything about running a website/forum

edit: [Link] might have some more useful info...

@FreeER Cloudflare allows free ssl too (it will take me 5 mins to implement here).

But I don't see a point to https? There isn't a shop being run here and the hassle of it is meh. If you know a good reason, let me know - i've thought about it and from my understanding it doesn't really give that much benefit. The brand name SSLs certs are too expensive (we will all have to chip in if we wanted to buy that) and that's the only type i like as it gives an authority to the site .

Possibly concerned about the login page...

STN wrote: ↑

Mon Mar 27, 2017 6:09 am

@FreeER Cloudflare allows free ssl too (it will take me 5 mins to implement here).

Cool, news to me, hopefully I'll remember that if it comes up again somewhere soon-ish

STN wrote: ↑

Mon Mar 27, 2017 6:09 am

But I don't see a point to https?

Primarily this:

++METHOS wrote: ↑

Mon Mar 27, 2017 10:22 am

Possibly concerned about the login page...

but apparently google is factoring it into it's rankings so that's a small thing as well, and I imagine it makes some people more comfortable to use https since most/all browsers display a green "secure" mark (and supposedly chrome will be showing a red "insecure" mark soon). Basically boils down to that as far as I know like this says [Link] (security, confidence, and seo).

Logins for CEF aren't encrypted, either:

Dark Byte wrote:they are hashed, but if you login the password is still sent as plain text.
so someone can just use a packet sniffer to find it

See [Link].

Just out of curiousity: how are the passwords of this site stored? salts, iterations? and why not encrypt passwords? just because CEF doesnt do it?
My firefox always warns me when i want to enter the password, because its not encrypted.

it doesn't matter how this site stores passwords, but just because it's not using https it's 'unsafe'

if this site where to use https but store all passwords in plain text in a passwords.txt readable by everyone, it would be classified as 'safe' to firefox.

so think about that when your browser is scaring you that something is unsafe

Eric wrote: ↑

Sun Apr 02, 2017 1:40 pm

it doesn't matter how this site stores passwords, but just because it's not using https it's 'unsafe'

if this site where to use https but store all passwords in plain text in a passwords.txt readable by everyone, it would be classified as 'safe' to firefox.

so think about that when your browser is scaring you that something is unsafe

The point is, that all people nowadays got a smartphone and many places got public wifi.
HTTPS protects you from the man in the middle attack that can happen fast trough an unknown network.
Also read [Link]

Just don't use the same password for everything so when someone sees your password it's no issue

To bring up further infomation on why we need to adapt the http:// usage is this reason of the dirty gov of today!

[Link]

BYE BYE INTERNET PRIVACY! ADVERTISERS GOT IT! all thanks to trump and the lunatic party (republicans) of the USA.

Last I've heard, websites of adult entertainment like pornhub have started doing their https encyption and trying to fight against the republicans as well from this bill and possibly anything else. This april fools joke that they did pretty much bring in the scare of everyone...

[Link]
[Link]
[Link]

Best start using programs like "HTTPS EVERYWHERE" for firefox/chrome users... helps out on alot of websites.

Next thing trump will go against us after this.... net neutality? better make sure all freebies get access to fast lane now.

[Link]

Hi there,

first of all thx for this forum.
second where are the problems to use Let's Encrypt for https?

All what I read by now confused me a little:

On the one hand you create a new forum for CE, because the old one is "old". And it also seems to be impossibel to create a new account or retreat a new password, but this another story.
So on the one hand you create a new forum in your freetime, but on the other one you do not the simplest thing of all, even it its is for free by now, to protect you work, by using ssl cert.
It's like build a twin-house one finished, one with unfinisehd roof. Don't wonder if you have to do a core removal after a short time, caused by mildew.

If you need any help, I am avaible.

With regards

The site now uses https. Happy?