Login to ZARP

TOPIC: Secure Website

Secure Website 6 years 5 months ago #934446

Someone mentioned this to me, so I have decided to ask. How would ZARP go about making their website Secure and start with https. Idk too much about it but surley its a good thing to have. I'm just curious of the process required to make it Secure.	Mattors Offline Expert Boarder 저는 사과를 좋아해요 Posts: 1248 Thanks received: 550 Karma: -32
Login or register to post a reply.

Secure Website 6 years 5 months ago #934453

www.howto-expert.com/how-to-get-https-se...ssl-on-your-website/	DEADMONSTOR Offline Former Owner Posts: 9277 Thanks received: 3799 Karma: 80
... Login or register to post a reply. The following user(s) said Thank You: Mattors, Sopheric

Secure Website 6 years 5 months ago #934464

It would mean all the data gets encrypted	eddie. Offline Adept Boarder fuck Posts: 6128 Thanks received: 1742 Karma: 48
✥ Ex Deathrun Super Administrator ✥ ✥ Ex TTT Super Administrator ✥ ✥ Ex SSRP Administrator ✥ ✥ Ex TeamSpeak Staff ✥ ✥ Ex Discord Staff ✥ ✥ Ex Forum Staff ✥ Steam-Click here! Login or register to post a reply.

Secure Website 6 years 5 months ago #934467

I swear there was a post time ago all about our data being encrypted, Correct me if im wrong?	TimeForPug Offline Adept Boarder Posts: 6768 Thanks received: 1212 Karma: -15
Login or register to post a reply.

Secure Website 6 years 5 months ago #934472

TimeForPug wrote: I swear there was a post time ago all about our data being encrypted, Correct me if im wrong? There was one about our passwords being encrypted	eddie. Offline Adept Boarder fuck Posts: 6128 Thanks received: 1742 Karma: 48
✥ Ex Deathrun Super Administrator ✥ ✥ Ex TTT Super Administrator ✥ ✥ Ex SSRP Administrator ✥ ✥ Ex TeamSpeak Staff ✥ ✥ Ex Discord Staff ✥ ✥ Ex Forum Staff ✥ Steam-Click here! Login or register to post a reply.

Secure Website 6 years 5 months ago #934473

It doesn’t really matter. If you follow good practice you use a different password for all of your stuff. If you don’t you’ll get got that way, way before you would by someone intercepting your traffic. The only thing you should really be worried about over http is sending credit card details. But thats why we use Paypal because they handle that so we dont know anything other then paypal validated your transaction. It wouldn’t hurt changing to use https as I think stuff is starting to drop http support. But its not a huge deal that its still http.

EMP
Offline
Community Owner
ZARP Owner/Developer
Posts: 2045
Thanks received: 3152
Karma: -53

To Add me on Steam Click the Image Below!

Login or register to post a reply.

The following user(s) said Thank You: TimeForPug, Anon_Gaming, eddie., Mattors

Secure Website 6 years 5 months ago #934479

@emp two-factor authentication buddy	Roy Harper Offline Adept Boarder someone stole my legendary member Posts: 6857 Thanks received: 1950 Karma: 15
»Ex-DarkRP HeadAdmin« »Ex-TeamSpeak3 Staff« »Ex-Appeals Section Mod« »Ex-Jailbreak Moderator« »Ex-Bhop Moderator« Login or register to post a reply.

Secure Website 6 years 5 months ago #934482

write down your password on paper and forget about it	catboy sven ツ Offline Adept Boarder Respected Zarp Contributor Posts: 7197 Thanks received: 1544 Karma: -45
ex-minecraft owner, zarp legend (Was there during the infancy of Zarp), ex-ssrp admin, ex-teamspeak emblem (For SSRP admin & minecraft owner) Login or register to post a reply.

Secure Website 6 years 5 months ago #934524

Theres no reason to buy a certificate really unless your site recieves DNS attacks, or credit card information is being used. All ZARP money transactions are done through paypal though.	Diet Water Offline Diamond Boarder Posts: 2948 Thanks received: 747 Karma: -51
Last Edit: 6 years 5 months ago by Diet Water. Login or register to post a reply.

Secure Website 6 years 5 months ago #935698

Roy Harper wrote:

@emp two-factor authentication buddy

Your still an idiot if you use the same password on every site. Even your two factor auth can be bypassed by good old social engineering. Someone calls up your cell provider as you and has them issue them a new sim with your number and suddenly their in. If you use a different password on each site then they have access to only that account.

EMP
Offline
Community Owner
ZARP Owner/Developer
Posts: 2045
Thanks received: 3152
Karma: -53

To Add me on Steam Click the Image Below!

Login or register to post a reply.

The following user(s) said Thank You: Diet Water

Secure Website 6 years 5 months ago #935717

How zarp installed ssl 1. Went to Cloudflare.com 2. Activated crypto 3. Activated https rewrites In other means ssl not that hard anymore	Bob The Shoplifter Offline Senior Boarder I abused banana boy the 30 minutes he was user :D Posts: 681 Thanks received: 75 Karma: 0
Login or register to post a reply.

Secure Website 6 years 5 months ago #935720

Bob The Shoplifter wrote: How zarp installed ssl 1. Went to Cloudflare.com 2. Activated crypto 3. Activated https rewrites In other means ssl not that hard anymore Wrong	Chuteuk Offline Community Owner ZARP Owner Posts: 3468 Thanks received: 5078 Karma: 958
Login or register to post a reply. The following user(s) said Thank You: Nafe, CaptinF1rework, eddie.

Secure Website 6 years 5 months ago #935725

Chuteuk wrote: Bob The Shoplifter wrote: How zarp installed ssl 1. Went to Cloudflare.com 2. Activated crypto 3. Activated https rewrites In other means ssl not that hard anymore Wrong	TimeForPug Offline Adept Boarder Posts: 6768 Thanks received: 1212 Karma: -15
Login or register to post a reply. The following user(s) said Thank You: Chuteuk, luke_, Diet Water, Roy Harper, eddie.

Secure Website 6 years 5 months ago #935731

EMP wrote:

Roy Harper wrote:

@emp two-factor authentication buddy

Your still an idiot if you use the same password on every site. Even your two factor auth can be bypassed by good old social engineering. Someone calls up your cell provider as you and has them issue them a new sim with your number and suddenly their in. If you use a different password on each site then they have access to only that account.

Two-factor authentication is not necessarily via phone number? Take Steam's for example.

Edit: Also if your cell provider issues a new sim in a very reckless manner they're a shit one lol. They ask very specific questions, and that was like 3 years ago when I upgraded my sim to a nano.

Roy Harper
Offline
Adept Boarder
someone stole my legendary member
Posts: 6857
Thanks received: 1950
Karma: 15

»Ex-DarkRP HeadAdmin«
»Ex-TeamSpeak3 Staff«
»Ex-Appeals Section Mod«
»Ex-Jailbreak Moderator«
»Ex-Bhop Moderator«

Last Edit: 6 years 5 months ago by Roy Harper.

Login or register to post a reply.

Secure Website 6 years 5 months ago #936197

Chuteuk wrote: Bob The Shoplifter wrote: How zarp installed ssl 1. Went to Cloudflare.com 2. Activated crypto 3. Activated https rewrites In other means ssl not that hard anymore Wrong What else did you do? Ssl is allready built in to cloudflare and ur using cloudflare.I guess fixing errors with kuena forums not supporting ssl that well.	Bob The Shoplifter Offline Senior Boarder I abused banana boy the 30 minutes he was user :D Posts: 681 Thanks received: 75 Karma: 0
Login or register to post a reply.

Secure Website 6 years 5 months ago #936201

Roy Harper wrote:

EMP wrote:

Roy Harper wrote:

@emp two-factor authentication buddy

Your still an idiot if you use the same password on every site. Even your two factor auth can be bypassed by good old social engineering. Someone calls up your cell provider as you and has them issue them a new sim with your number and suddenly their in. If you use a different password on each site then they have access to only that account.

Two-factor authentication is not necessarily via phone number? Take Steam's for example.

Edit: Also if your cell provider issues a new sim in a very reckless manner they're a shit one lol. They ask very specific questions, and that was like 3 years ago when I upgraded my sim to a nano.

Lel steam uses phone. I hacked back my own account with a new enabled auth on in under 30 sec

Bob The Shoplifter
Offline
Senior Boarder
I abused banana boy the 30 minutes he was user :D
Posts: 681
Thanks received: 75
Karma: 0

Login or register to post a reply.

Secure Website 6 years 5 months ago #936678

Roy Harper wrote:

@emp two-factor authentication buddy

2 step still isn't a reliable way of protecting accounts.
Bob The Shoplifter wrote:

How zarp installed ssl
1. Went to Cloudflare.com
2. Activated crypto
3. Activated https rewrites

In other means ssl not that hard anymore

You have to get an SSL Certificate, which you usually have to pay for
Roy Harper wrote:

EMP wrote:

Roy Harper wrote:

@emp two-factor authentication buddy

Your still an idiot if you use the same password on every site. Even your two factor auth can be bypassed by good old social engineering. Someone calls up your cell provider as you and has them issue them a new sim with your number and suddenly their in. If you use a different password on each site then they have access to only that account.

Two-factor authentication is not necessarily via phone number? Take Steam's for example.

Edit: Also if your cell provider issues a new sim in a very reckless manner they're a shit one lol. They ask very specific questions, and that was like 3 years ago when I upgraded my sim to a nano.

You'll be surprised on how some providers just give up access to it

Anon_Gaming
Offline
Legendary Member
#BritishCrumpet
Posts: 1320
Thanks received: 580
Karma: 0

Last Edit: 6 years 5 months ago by Anon_Gaming.

Login or register to post a reply.

Secure Website 6 years 5 months ago #936698

Bob The Shoplifter wrote:

Chuteuk wrote:

Bob The Shoplifter wrote:

How zarp installed ssl
1. Went to Cloudflare.com
2. Activated crypto
3. Activated https rewrites

In other means ssl not that hard anymore

Wrong

What else did you do? Ssl is allready built in to cloudflare and ur using cloudflare.I guess fixing errors with kuena forums not supporting ssl that well.

You cannot properly enable SSL through all parts of the connection is you simply enable it in Cloudflare without installing Certificates on the origin server. Otherwise the connection is still vulnerable to a sophisticated attack.

Chuteuk
Offline
Community Owner
ZARP Owner
Posts: 3468
Thanks received: 5078
Karma: 958

Login or register to post a reply.

Secure Website 6 years 5 months ago #936734

oof its secure now	illegalimmigrant Offline Gold Boarder dont worry im hilarious Posts: 1726 Thanks received: 535 Karma: -87
Login or register to post a reply.

Secure Website 6 years 5 months ago #938228

Chuteuk wrote:

Bob The Shoplifter wrote:

Chuteuk wrote:

Bob The Shoplifter wrote:

How zarp installed ssl
1. Went to Cloudflare.com
2. Activated crypto
3. Activated https rewrites

In other means ssl not that hard anymore

Wrong

What else did you do? Ssl is allready built in to cloudflare and ur using cloudflare.I guess fixing errors with kuena forums not supporting ssl that well.

You cannot properly enable SSL through all parts of the connection is you simply enable it in Cloudflare without installing Certificates on the origin server. Otherwise the connection is still vulnerable to a sophisticated attack.

"sophisticated" No one on zarp is sophisticated