WATCH Where Your Browsing on the INTERNET--*(IMPORTANT INFORMATION)*

Status
Not open for further replies.
I

ipfd320

Member
Banned
Joined
Jul 30, 2008
Messages
751
Location
W.Babylon N.Y. 11704
I Have Been Noticing Something is VERY VERY WRONG with the Internet and Search Engines---In The Search Box at the Top of The Page the--HTTPS:// is Missing on Certain Websites where SECURE is NOT SECURE--This Involves GOOGLE and YAHOO Searches


I Had My Anti AVG Virus Stop a Threat Due to This Tabacle Again with these Search Engines are Causing---This Happened About 2 Years Ago Nationwide with the Secure Sites All of a Sudden Not Being Secured Be VIGILANT and Keep the ANTI-VIRUS Up to DATE and Please if You Do BANKING or BILL Payments ONLINE---MAKE SURE THE HEADING HAS THE ---*(HTTPS:// before the WWW.)*-- AND THE WORD SECURE IN THE BEGINNING of the HEADER
 
C

CCT

Member
Joined
Nov 16, 2013
Messages
14
Location
SE Michigan
Your going to see a lot more "not secure" showing up at the top of your browser as the major browsers (especially google chrome) push to label all non "https" sites as "not secure".

see this link:
In security push, Chrome will soon mark every HTTP page as "non-secure" | ZDNet

There is a browser plug-in that will auto redirect your browser to "https" on websites that have it available.
https://www.eff.org/https-everywhere

You are correct about being vigilant when doing online banking in checking for https. Along with that it's a really bad idea to "google" your bank so you can log in. There are too many scam websites and fake login links in a web search. Always check your bank statement for the correct website address.
 
I

ipfd320

Member
Banned
Joined
Jul 30, 2008
Messages
751
Location
W.Babylon N.Y. 11704
Well I Dont Have Any Other Choice--1 My Pc is Old and 2 I Dont Have the Money to Buy new PC or Software---Im Using Win 7

as for the Browser Plug In Link I was Reading on it and It will Only Double Secure anything that is Already HTTPS Site Enabled---It Clearly States it Cant Protect a Site without HTTPS in the Header or Firefox with the Broken Lock

I Find it Amazing that All of a Sudden This Happened---I Used to Go to Sites That Used to be Secure and Now There Not---Did Google and Other Engines Send Out a Zapper to Delete the HTTPS from Certain Sites ???

I Thought Going Thru a Search Engine Like Google Would Secure Our Connection to Use---Now it Seems Like Using them Is a Liability

Ant Takers on This ???
 
doctordialtone

doctordialtone

Member
Joined
Apr 18, 2009
Messages
6,189
Location
CT
S

simpilo

Guest
Install updated root SSL CA's

ipfd320 said:
Well I Dont Have Any Other Choice--1 My Pc is Old and 2 I Dont Have the Money to Buy new PC or Software---Im Using Win 7

as for the Browser Plug In Link I was Reading on it and It will Only Double Secure anything that is Already HTTPS Site Enabled---It Clearly States it Cant Protect a Site without HTTPS in the Header or Firefox with the Broken Lock

I Find it Amazing that All of a Sudden This Happened---I Used to Go to Sites That Used to be Secure and Now There Not---Did Google and Other Engines Send Out a Zapper to Delete the HTTPS from Certain Sites ???

I Thought Going Thru a Search Engine Like Google Would Secure Our Connection to Use---Now it Seems Like Using them Is a Liability

Ant Takers on This ???
Click to expand...

I already did take it on. I had to install 53 SSL CA root certificates manually in the trusted zone using Microsoft Management Console. It's tedious work. Just right clicking>>>install certificate doesn't do it. You have to use MMC to do it right. Google Chrome on my Windows XP machine now shows https:// with a green lock. Keep your expired SSL CA's though because they are base CA's.

Main ones are from Digicert, Verisign, Comodo SSL CA. These are chained root CA's which means they may work for a vast amount of sites but some use a different chain so they will require downloading from them. I spent 5 hours doing this and backed them all up.
 
Citywide173

Citywide173

Member
Premium Subscriber
Joined
Feb 18, 2005
Messages
2,151
Location
Attleboro, MA
ipfd320 said:
I Find it Amazing that All of a Sudden This Happened---I Used to Go to Sites That Used to be Secure and Now There Not---Did Google and Other Engines Send Out a Zapper to Delete the HTTPS from Certain Sites ???
Click to expand...

Google pretty much forced this down the throat of webmasters under the guise of security. There are a lot of sites that don't need SSL protection that have been duped into thinking they had to buy an SSL certificate. I was lucky, my webhost developed and deployed a free SSL that just required a simple change to my .htaccess file. If I had to buy a certificate and add all of my domains/subdomains to it, it would have added another couple of thousand dollars to my website costs annually.

https://serverguy.com/security/google-forcing-ssl-certificate-websites/
 
Stupidfatkid

Stupidfatkid

Member
Joined
Apr 26, 2004
Messages
166
Location
Kansas
Citywide173 said:
Google pretty much forced this down the throat of webmasters under the guise of security. There are a lot of sites that don't need SSL protection that have been duped into thinking they had to buy an SSL certificate. I was lucky, my webhost developed and deployed a free SSL that just required a simple change to my .htaccess file. If I had to buy a certificate and add all of my domains/subdomains to it, it would have added another couple of thousand dollars to my website costs annually.

https://serverguy.com/security/google-forcing-ssl-certificate-websites/
Click to expand...

Have you looked into Let's Encrypt? They provide free domain validation (DV) certs. I've been running a Let's Encrypt cert on my domain for probably a year now. I haven't had any issues.

https://letsencrypt.org/
 
Last edited:
Status
Not open for further replies.

Similar threads

Hooligan
  • Locked
A Long Time Ago in what seemed to be a Galaxy far, far away...
Replies
11
Views
3K
Hooligan
Hooligan
Top