OT: Site security?

[terrypin]

I've started getting message like this from Firefox



when I follow links in topic reply notification emails:
If you want to view the newest post made since your last visit, click the
following link:
viewtopic.php?f=56&t=63075&p=352581&e=352581

[JoeB]

I haven't, but then I don't use Firefox but IE. Sounds like Firefox is making its own decisions about what is and what is not a proper website configuration. Like Microsoft and it's pushed updates, some of these programs seem to be becoming more nanny than real nannies.

[hartpaul]

This may help :
https://support.mozilla.org/en-US/kb/wh ... ecure-mean

Apparently firefox is now expecting sites to offer a higher encryption similar to https sites and there is a move for all sites to start using this higher encryption.
You can place known safe sites on an exceptions list so you don't get the message again.

[bruce1951]

I get the same message when trying to log into these forums.Plus others. I'm sure it's just Firefox being paranoid!! I Hope!

bruce

[JoeB]

I get the same message when trying to log into these forums.Plus others. I'm sure it's just Firefox being paranoid!! I Hope!

bruce

For this site I'm sure you don't have to hope - it's safe.

And that's the problem with these "nanny" warnings that are starting to show up with software like Firefox who are trying to enforce what they think/decide is better and/or more security coding by website developers. It causes paranoia. And it does so particularly with people who are newer internet users and those less net savvy than many of us who have been computer/internet users for as long as they've been available. Even Terry (as seen by this thread) found himself concerned, and he's not actually a neophyte.

Yes, there has to be a balance so that these less experienced users don't get caught with the continually evolving malware assaults that infect the internet. But simply giving a scary sounding warning is the worst way to go. At a very minimum those warnings should explain - in easy to understand, non-technical language - why the warning is being given and set out that if it's a known site trusted by the user then they should have no concerns.

Sorry if the above sounds like a rant, but I'm getting increasingly frustrated with the way society - living and technological - has become more and more a "nanny" society - e.g., don't trust this website just because we don't; don't let kids use monkey bars in playgrounds because they might fall into the sand below; don't touch somebody to get their attention because that could be assault; and etc., etc., etc. If/when we eliminate all risks and/or make all actions subject to societal induced sanctions we will simply stop really living as vibrant, evolving human beings.

Now THAT'S a rant - just for comparison purposes, of course. Definitely 'nuff said, eh?

[bruce1951]

Oh JoeB now you've gone and dun it.

Endless rants will now begin!

Rant rant rant rant rant rant rant rant rant rant rant rant rant.

I really wonder how this generation was able to survive without all the do gooders telling us what to do!

bruce

[JoeB]

Oh JoeB now you've gone and dun it.

Endless rants will now begin!

Rant rant rant rant rant rant rant rant rant rant rant rant rant.

I really wonder how this generation was able to survive without all the do gooders telling us what to do!

bruce

I'm so sorry, Bruce.

And yep. That was a lot of rants for sure in your post. Just not endless. Maybe need an infinity emoticon?

[juergen]

Corel has massive sales (i think). Don't blame mozilla. The cipher TLS 1.0 is deprecated (long time ago. We have 2018. TLS 1.0 is from 1999, deprecated since 2014 or 2015?). The certificate is valid until 18.04.2015. It's corel, not mozilla who does not seriously work here - IMHO.

This site is secure if you use a unique passwort, so nothing awful can happen if the site or your connection is vulnerable.
I ask myself "is the corel software secure (if i use it to push pictures to flickr (...) when using PSP)" in general?

just my 2 cents

[terrypin]

Corel has massive sales (i think). Don't blame mozilla. The cipher TLS 1.0 is deprecated (long time ago. We have 2018. TLS 1.0 is from 1999, deprecated since 2014 or 2015?). The certificate is valid until 18.04.2015. It's corel, not mozilla who does not seriously work here - IMHO.

This site is secure if you use a unique passwort, so nothing awful can happen if the site or your connection is vulnerable.
I ask myself "is the corel software secure (if i use it to push pictures to flickr (...) when using PSP)" in general?

just my 2 cents

I agree. Corel should implement the latest site security techniques for maximum protection.