How can an https web site still be nonsecure?

Search First! Then browse: Categories | Full Archive | By Date | Newsletter

Comments

All Comments on: How can an https web site still be nonsecure?

Read the article that everyone's commenting on.
Subscribe to the RSS Feed for comments on this article.

Comment Page: 1 | 2

Speaking of bad web design. I went to read "Why didn't you answer my question?" and a grayed out screen with modal box asking me if I wanted to receive your news letter in the middle of it came up. Ironically I was trying to read the article Because of the news letter. I had no scroll bar and so I was not able to scroll down to close it. I used the back button.and here I am. I'm going to try again. This time it worked.

FWIW: that popup does have a close button (x in the upper right corner, like most windows), and as long as cookies are enabled should only appear once ever 180 days.

More here: Why do I keep getting a newsletter subscribe pop-up on your site?

-Leo

Posted by: David Sorge at August 10, 2008 7:40 PM

Hi Leo,

Excellent article! You mentioned 'always using an encrypted VPN' in your article. How is a VPN more secure than a single https web site implementation? Wouldn't I need using your browser settings trick within a VPN? Thanks a lot.

A VPN will encrypt all data between yourself and the VPN provider, whether it's https or not. After the VPN provider it travels encrypted, or not, dependong on whether it's https, or not.

An https connection is encrypted all the way between you and the web site you're accessing.

Most sniffing attacks happen at your end, so making sure that the data is encrypted as it leaves your computer - https or VPN - is what's important, IMO.

- Leo
21-Sep-2008

Posted by: Jimmy Boyd at September 21, 2008 4:38 AM

Comment Page: 1 | 2

Read the article that everyone's commenting on.

Subscribe to the RSS Feed for comments on this article.