I strongly recommend re-enabling SSL for the forum. - Website Support - International Cannagraphic Magazine Forums

01-26-2009, 03:37 PM

I'm sure I count for very little here, but I do know one or two things about internet security. Anyone concerned about their privacy or internet filtering should be using a proxy server of some kind. (I personally prefer Tor.)

But, with https://www.icmag.com no longer functional, even with its expired security certificate, anyone using a proxy server of any kind is at risk of exposing their passwords.

Here is one example: https://www.theregister.co.uk/2007/09...ssword_breach/

Unless you have explicit reason to trust the proxy service you are using, do not send passwords without using https. (Which means no anonymous login, which means your ISP can see what you're doing, which means your government can filter your internets, etc...)

Please, fix https on this site so that it is safer for all people to access.

Jones · 01-26-2009, 10:40 PM

.

01-26-2009, 11:05 PM

Post maintenance it seems to be working again. The certificate is still expired, but it works if you make an exception in your browser.

iLLperception · 01-26-2009, 11:26 PM

It seems to be working again. I spent all day yesterday thinking the forums were down since my bookmark goes to HTTPS!!!!! Thanks for fixing it!

kp^ · 01-28-2009, 06:17 AM

Expired SSL certs are not to be trusted either as they can be spoofed. A new cert would be wise, plus using Tor. For me, I'm on a custom adapter that uses Tor...etc

**Skip** · 01-28-2009, 06:04 PM

Glad it's working for you again. We will look into renewing the certificate. Don't worry, we're not spoofing you! ;0)

SouthernGuerila · 01-30-2009, 07:11 AM

New certs could be spoofed too...

SSL man in the middle attacks - https://www.google.com/search?q=ssl+m...+middle+attack

REZDOG · 02-06-2009, 01:39 AM

ICM really (REALLY!) needs to be SSL encrypted,like Overgrow was.
For site member privacy and safety it's The Best Thing.

Please Advise.

GOLDISMONY · 02-06-2009, 01:56 AM

Quote:

Originally Posted by REZDOG

ICM really (REALLY!) needs to be SSL encrypted,like Overgrow was.
For site member privacy and safety it's The Best Thing.

Please Advise.

Didn't realize it wasn't, not good folks, not good at all.

Jones · 02-06-2009, 04:25 AM

.

01-26-2009, 03:37 PM	#1
SmokeToLive Guest Posts: n/a	I strongly recommend re-enabling SSL for the forum. I'm sure I count for very little here, but I do know one or two things about internet security. Anyone concerned about their privacy or internet filtering should be using a proxy server of some kind. (I personally prefer Tor.) But, with https://www.icmag.com no longer functional, even with its expired security certificate, anyone using a proxy server of any kind is at risk of exposing their passwords. Here is one example: https://www.theregister.co.uk/2007/09...ssword_breach/ Unless you have explicit reason to trust the proxy service you are using, do not send passwords without using https. (Which means no anonymous login, which means your ISP can see what you're doing, which means your government can filter your internets, etc...) Please, fix https on this site so that it is safer for all people to access.
	Quote

01-26-2009, 10:40 PM	#2
Jones ... saved the world! Join Date: Dec 2008 Location: Gone Posts: 599	. __________________ Ask yourself: "What did Jones do?" Last edited by Jones; 07-10-2011 at 03:01 PM..
	Quote

01-28-2009, 06:17 AM	#5
kp^ Member Join Date: Oct 2007 Location: In a cloud of smoke Posts: 227	Expired SSL certs are not to be trusted either as they can be spoofed. A new cert would be wise, plus using Tor. For me, I'm on a custom adapter that uses Tor...etc __________________ OG refugee : ICMAG'S OFFICIAL ~DIY~ LINK-O-RAMA ALL ABOUT BONSAI MOMS/MUMS**
	Quote

01-28-2009, 06:04 PM	#6
Skip Let's Get Small! Join Date: Jan 2004 Posts: 5,456	Glad it's working for you again. We will look into renewing the certificate. Don't worry, we're not spoofing you! ;0) __________________ "America's freedom lies in cannabis." - feltonmuggs "Prohibition is the gateway to fascism." - Treewizard
	Quote

01-30-2009, 07:11 AM	#7
SouthernGuerila Gotta Smoke 'Em All! Join Date: Jan 2009 Location: Under the old oak tree. Posts: 1,188	New certs could be spoofed too... SSL man in the middle attacks - https://www.google.com/search?q=ssl+m...+middle+attack __________________ NORML - Take Action NOW!
	Quote

01-26-2009, 11:05 PM	#3
SmokeToLive Guest Posts: n/a	Post maintenance it seems to be working again. The certificate is still expired, but it works if you make an exception in your browser.
	Quote

01-26-2009, 11:26 PM	#4
iLLperception Member Join Date: Dec 2007 Posts: 256	It seems to be working again. I spent all day yesterday thinking the forums were down since my bookmark goes to HTTPS!!!!! Thanks for fixing it!
	Quote

02-06-2009, 01:39 AM	#8
REZDOG Banned Join Date: May 2006 Location: Catatonia Posts: 9,147	*Why The %@! Isn't ICM SSL Encrypted??** ICM really (REALLY!) needs to be SSL encrypted,like Overgrow was. For site member privacy and safety it's The Best Thing. Please Advise.
	Quote

02-06-2009, 04:25 AM	#10
Jones ... saved the world! Join Date: Dec 2008 Location: Gone Posts: 599	. __________________ Ask yourself: "What did Jones do?" Last edited by Jones; 07-10-2011 at 03:02 PM..
	Quote