OV9

Matty, can I suggest you enrol a Let's Encrypt free cert and make this site HTTPS? Also 301 all HTTP requests to HTTPS too when you've done it.

Will do - wasn't aware of those free certs...

Yup. They expire after 60 days but auto-renewal is easy to setup. If you have a reasonable DNS interface you can do DV for renewals by DNS.

I dont know what any of this means - but if you incur any costs in all of this - let us know and we’ll sort it...

Rich B wrote: ↑Wed Apr 11, 2018 7:02 pm I dont know what any of this means - but if you incur any costs in all of this - let us know and we’ll sort it...

The cert stuff is all free

But I concur on the rest. If you incur and other costs Matt I'm sure we'll all chip in.

Simon wrote: ↑Wed Apr 11, 2018 6:48 pm Yup. They expire after 60 days but auto-renewal is easy to setup. If you have a reasonable DNS interface you can do DV for renewals by DNS.

If you're running on Linux, CertBot will help. just run a cron once a month to renew and you'll never have to think about it again.

Also, if you envisage adding more subdomains, I think you can get Wildcards these days on LetsEnrypt, too. Just get *.evoreaders.co.uk and bosh, job jobbed.

Beany wrote: ↑Wed Apr 11, 2018 8:27 pm

Simon wrote: ↑Wed Apr 11, 2018 6:48 pm Yup. They expire after 60 days but auto-renewal is easy to setup. If you have a reasonable DNS interface you can do DV for renewals by DNS.

If you're running on Linux, CertBot will help. just run a cron once a month to renew and you'll never have to think about it again.

Also, if you envisage adding more subdomains, I think you can get Wildcards these days on LetsEnrypt, too. Just get *.evoreaders.co.uk and bosh, job jobbed.

Yes, wildcards arrived in January. Definitely just do that.

Do wildcards work yet? I've not had a chance to play with it, annoyingly (although I have an excuse now that I've got my personal domain sooked over to Cloudflare and have subdomains pointing to my home DSL etc....)

Beany wrote: ↑Wed Apr 11, 2018 10:18 pm Do wildcards work yet? I've not had a chance to play with it, annoyingly (although I have an excuse now that I've got my personal domain sooked over to Cloudflare and have subdomains pointing to my home DSL etc....)

Yeah, they work. Just pissed about and made one for my domain and applied it to my NAS at home and it works fine.

So just need to find some way of automating the collection of that cert, and distributing it to all my crap. So that's fine.

Used this:
https://www.sslforfree.com/

9 months later on, but this should now be working.

I do get a "Not all parts are HTTPS" warning in Firefox, but I think that's just down to how PhpBB handles the header image, I can't find how to change the header image for that one.

Thanks Matty

Good work. Now, to test it, can everyone send me the long number off their credit card, expiry date and last 3 digits from the back. Thanks.

So why is it better being HTTPS? Is the "S" for "Sport"?

I'm going to pretend that you actually want to know. The S stands for "Secure".

Under normal http web traffic, when you log in to the site and send your username and password, those details are transmitted in plain text. Anyone sitting on the internet between you and the OV9 server can see that password and then take over your account, or any other account where you use the same details.

The S means that those details are now transmitted only after being encrypted so they can't be read.

(Thankyou)

A few old bookmarks are broken.
e.g.
http://forums.ov9.co.uk/viewforum.php/?f=7
redirects to
https://forums.ov9.co.ukviewforum.php/?f=7

Matty wrote: ↑Sun Jan 13, 2019 9:36 pm 9 months later on, but this should now be working.

I do get a "Not all parts are HTTPS" warning in Firefox, but I think that's just down to how PhpBB handles the header image, I can't find how to change the header image for that one.

Loading mixed (insecure) display content "http://forums.ov9.co.uk/favicon.ico" on a secure page

It's just the Favicon that I can see, but it's nothing to worry about.

I recently had to move all our Wordpress sites to HTTPS, and our ex-developer baked in so many hard HTTP (not relative) links that it nearly drove me bonkers.

JonMad wrote: ↑Mon Jan 14, 2019 11:47 am A few old bookmarks are broken.
e.g.
http://forums.ov9.co.uk/viewforum.php/?f=7
redirects to
https://forums.ov9.co.ukviewforum.php/?f=7

Are those your bookmarks, or links somewhere on the site?

Matty wrote: ↑Mon Jan 14, 2019 4:00 pm

JonMad wrote: ↑Mon Jan 14, 2019 11:47 am A few old bookmarks are broken.
e.g.
http://forums.ov9.co.uk/viewforum.php/?f=7
redirects to
https://forums.ov9.co.ukviewforum.php/?f=7

Are those your bookmarks, or links somewhere on the site?

Not bookmarks actually, just Safari autocomplete from cached page visits.

JonMad wrote: ↑Mon Jan 14, 2019 4:14 pm

Matty wrote: ↑Mon Jan 14, 2019 4:00 pm

JonMad wrote: ↑Mon Jan 14, 2019 11:47 am A few old bookmarks are broken.
e.g.
http://forums.ov9.co.uk/viewforum.php/?f=7
redirects to
https://forums.ov9.co.ukviewforum.php/?f=7

Are those your bookmarks, or links somewhere on the site?

Not bookmarks actually, just Safari autocomplete from cached page visits.

Chrome desktop and mobile is doing it too.