Page 2 of 2 FirstFirst 12
Results 11 to 17 of 17

Thread: No secure connection to LHC

  1. #11

    Default Re: No secure connection to LHC

    Already ruled that out

  2. #12

    Default Re: No secure connection to LHC

    You guys really need to make the site only allow being logged in with a secure connection, instead of letting it fall back to unsecure

  3. #13
    Silverado EdG's Avatar
    Join Date
    Dec 2007
    Location
    California, USA
    Posts
    7,793
    Type
    2a/C/iii

    Default Re: No secure connection to LHC

    You need to debug more.
    Ed
    If there's something strange with your long hair / Who you gonna call? / L-H-C! (sung to the tune of Ghostbusters)

  4. #14

    Default Re: No secure connection to LHC

    No, the site needs to be administered properly

  5. #15
    Member enting's Avatar
    Join Date
    Sep 2015
    Posts
    2,686
    Length
    24/38.25/?
    Type
    2c/M/ii

    Default Re: No secure connection to LHC

    It's not secure on my end either. Never has been. Despite being https.

  6. #16
    Silverado EdG's Avatar
    Join Date
    Dec 2007
    Location
    California, USA
    Posts
    7,793
    Type
    2a/C/iii

    Default Re: No secure connection to LHC

    Quote Originally Posted by iforgotmylogin View Post
    No, the site needs to be administered properly
    I think that users would complain if they could not log in without a secure connection.

    Quote Originally Posted by enting View Post
    It's not secure on my end either. Never has been. Despite being https.
    You need to debug that.
    Ed
    If there's something strange with your long hair / Who you gonna call? / L-H-C! (sung to the tune of Ghostbusters)

  7. #17
    Fairy Queen blackgothicdoll's Avatar
    Join Date
    Oct 2018
    Posts
    2,718
    Length
    NL/APL/HL
    Type
    4a/C/ii/iii

    Default Re: No secure connection to LHC

    Quote Originally Posted by iforgotmylogin View Post
    Being redirected from http to https doesn't guarantee the secure connection gets established. Hence how I'm using the site unsecured
    What makes you think you're using the site unsecured?

    Are you using HTTP via TLS? Does a packet capture show your credentials in plain text if you run the pcap while signing on? Does the certificate not show as 'valid'?

    HTTPS is a protocol, and doesn't guarantee the method, you are correct. But the site isn't unsecured, either.

    There are various ways you can find this out, but the easier way for me is to press CTRL + SHIFT + I in my browser and view my dev tools. What is likely flagging in your browser is a non-secure form (where I am typing my data to post in) which we are all able to see as it is. The certificate shows as valid and trusted and the connection is using TLS 1.2, which is likely (hopefully) trusted by your browser.
    flaws are the most advanced form of art - bgd

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •