Club Cobra GasN Exhaust  

Go Back   Club Cobra > Cobra Talk Areas > ALL COBRA TALK
CC Site Not Secure / Cookies CC Site Not Secure / Cookies
Portal Register FAQ Community For Sale Gallery Calendar Today's Posts

Keith Craft Racing
Nevada Classics
MMG Superformance
Main Menu
Portal
Forums

Module Jump:
Nevada Classics
Nevada Classics
Advertise at CC
Banner Ad Rates
MMG Superformance
Keith Craft Racing
Keith Craft Racing
April 2024
S M T W T F S
  1 2 3 4 5 6
7 8 9 10 11 12 13
14 15 16 17 18 19 20
21 22 23 24 25 26 27
28 29 30        

Kirkham Motorsports

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 11-30-2018, 08:27 AM
cycleguy55's Avatar
CC Member
Visit my Photo Gallery

 
Join Date: Feb 2014
Location: White City, SK
Cobra Make, Engine: West Coast, 460 CID
Posts: 2,851
Not Ranked     
Default CC Site Not Secure / Cookies
Google Chrome is reporting the site is "Not secure", as it's using HTTP, rather than HTTPS. I can 'force' a page to HTTPS by entering it in the URL, but any clicked links open using HTTP. Even the login page is using HTTP, meaning usernames and passwords are communicated without encryption and therefore vulnerable to sniffing and 'man in the middle' techniques.

At what point is HTTPS going to be fully implemented and HTTP removed?

Also worth noting is there are 12 cookies set when opening the 'New Posts' page. 12?? Is that many really necessary?
  • "clubcobra.com": 8
  • "www.clubcobra.com":[/url] 3
  • "noojglkidnpfjbincgijbaiedldjfbhh" (????): 1 (see image at link below)

https://www.amazon.ca/clouddrive/sha...v5PdeSHxiEG1K9

What are others seeing?
__________________
Brian
Last edited by cycleguy55; 11-30-2018 at 08:30 AM..
Reply With Quote
  #2 (permalink)  
Old 11-30-2018, 10:29 AM
twobjshelbys's Avatar
CC Member
Visit my Photo Gallery

 
Join Date: Jan 2009
Location: Las Vegas, NV
Cobra Make, Engine: Shelby CSX4005LA, Roush 427IR
Posts: 5,461
Not Ranked     
Default
This site is way behind the times with respect to modern net practices. The only real exposure is your login password is sent clear text. With no ecomerce there's little exposure unless you share your username/password at other locations [hint, change it unique here]. I use the same login over multiple forums but if someone wants to steal my username/password and post here, more power to them. Of the 5 car forums I monitor regularly (in that they have a tab in this window) only one is using HTTPS.
__________________
Cheers,
Tony
CSX4005LA
Reply With Quote
  #3 (permalink)  
Old 11-30-2018, 10:35 AM
patrickt's Avatar
Half-Ass Member
Visit my Photo Gallery

 
Join Date: Jun 2005
Cobra Make, Engine: ERA #732, 428FE (447 CID), TKO600, Solid Flat Tappet Cam, Tons of Aluminum
Posts: 21,897
Not Ranked     
Default
There's nothing here worth securing with an SSL. And implementing it would just be one more thing to break, expire and set off flags with your browser, etc. I think you should be more concerned that your neighbor is spoofing ARP packets on your home network and diverting all your traffic over to his house where he is setting up a Man In The Middle attack with a self signed certificate that looks like your bank account log in.
Reply With Quote
  #4 (permalink)  
Old 11-30-2018, 12:26 PM
cycleguy55's Avatar
CC Member
Visit my Photo Gallery

 
Join Date: Feb 2014
Location: White City, SK
Cobra Make, Engine: West Coast, 460 CID
Posts: 2,851
Not Ranked     
Default
Quote:
Originally Posted by patrickt View Post
There's nothing here worth securing with an SSL. And implementing it would just be one more thing to break, expire and set off flags with your browser, etc. I think you should be more concerned that your neighbor is spoofing ARP packets on your home network and diverting all your traffic over to his house where he is setting up a Man In The Middle attack with a self signed certificate that looks like your bank account log in.



Glasswire looks for and reports ARP spoofing. Regardless, my neighbours are far enough away that they see a pretty weak WiFi signal.
__________________
Brian
Reply With Quote
Reply

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


All times are GMT -7. The time now is 07:36 AM.

Contact Us - Club Cobra Home - Archive - Top

Powered by vBulletin® Version 3.8.0
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.6.0
The representations expressed are the representations and opinions of the clubcobra.com forum members and do not necessarily reflect the opinions and viewpoints of the site owners, moderators, Shelby American, any other replica manufacturer, Ford Motor Company. This website has been planned and developed by clubcobra.com and its forum members and should not be construed as being endorsed by Ford Motor Company, or Shelby American or any other manufacturer unless expressly noted by that entity. "Cobra" and the Cobra logo are registered trademarks for Ford Motor Co., Inc. clubcobra.com forum members agree not to post any copyrighted material unless the copyrighted material is owned by you. Although we do not and cannot review the messages posted and are not responsible for the content of any of these messages, we reserve the right to delete any message for any reason whatsoever. You remain solely responsible for the content of your messages, and you agree to indemnify and hold us harmless with respect to any claim based upon transmission of your message(s). Thank you for visiting clubcobra.com. For full policy documentation refer to the following link: CC Policy
Links monetized by VigLink