Discussion in 'Site News' started by vostok, Jun 13, 2015.
We have and I'm sure he has considered it
Mods, owners, please check out letsencrypt.org - free https security certificates, trivial to obtain. Totally legit.
I would volunteer my time to help y'all install it. I almost didn't come back to RIU because it makes me so uncomfortable. I love too many people here to stay away, I guess.
Currently, anyone with rudimentary hacking skills can see an RIU user's password in plaintext when they log into the site via public wifi, for instance. They may not mean to target RIU or users here, but when script kiddies see unencrypted logins on the wire they swarm like flies on shit. Them's just facts.
If the site owners or mods had any idea how stupid it actually is to run a site like this w/o https, they'd walk in traffic...
The only thing users can do in the meantime is make sure they're using a different password for RIU, because like Michael H said, sites like this w/o https get farmed for logins, and more often than not those logins will work elsewhere...
Separate names with a comma.