i feel safe with you around
crucial.
i got a second ip for my slice, so ttf will be migrating. i promise that the migration will cause no interruption in http service. :)
i've seen some odd stuff, pages exploding to code, etc.
i'm going to buy one of these tonight.
ok, enjoy!
Awesome! For some reason, I never thought about ttf-ssl, but it makes so much sense.
ttf src should be fully compatible with https now.
http://code.google.com/p/thinktankforums/source/detail?r=325
let me know if you have any problems!
http://code.google.com/p/thinktankforums/source/detail?r=325
let me know if you have any problems!
shouldn't ssl be totally transparent?
no, because ttf uses http location headers in some scripts for redirection.
rfc 2616 requires the use of absolute uris for location headers.
rfc 2616 requires the use of absolute uris for location headers.
so it now uses http when not using ssl, and https when using ssl?
if php works as it claims to, yes.
mod rewrite ftw
but what if the browser doesn't support https?
redirect script that checks for https support ftw
i don't know
perhaps people who don't have https support don't deserve ttf.
I doubt this is what you're referring to, but ttf looks whack on my mac right now. And I don't know the F5 equivalent. :-\
try ^R
i haven't changed anything.
Well it looks weird
And ^R didn't work :(
And ^R didn't work :(
what looks weird?
All the text is larger and blocky-looking and the "edit" and "archive" links on posts are getting cut off on the bottom
a screenshot would probably help
did you install or uninstall fonts recently? you may need to rebuild your font cache, restart your browser, or restart your gui system.
sorry i don't know more about how to do that stuff on macs.
sorry i don't know more about how to do that stuff on macs.
^- or ^0 should do it
Something did! Thanks bluet :)
I am now using https://www.thinktankforums.com/ exclusively.
me too.
it took a while because http:// was at the top of my autocomplete list in my web browser. so for a bit I had to consciously press the down arrow a couple of times to get to https://. now it's on top though :).
i updated http://www.wingedleopard.net/ .
nice :].
i just did a google search for: "openbsd x60s"
third site result:
:\
third site result:
think tank forums » technology » *nix on x60s
so i got openbsd 3.1 installed on my x60s. em(4) and ath(4) do not work.. so no ethernet and no wireless. but it appears that this patch may get the atheros ...
https://ssl.thinktankforums.com/thread.php?thread_id=469 - 15k - Cached - Similar pages -
:\
damnit. i would setup a seamless redirect, but i already deleted "ssl" from the dns zone. i don't want to bother at this point. google will figure it out eventually.
alrighty
now if you log in on http://www.thinktankforums.com/ , it will submit the form via https.
Yay!
from now on, www.thinktankforums.com only sets secure cookies.
this means that it is now impossible for you to accidentally transmit your password in cleartext by visiting http://www.thinktankforums.com/ .
try it out! log in, then visit http://www.thinktankforums.com/ .
this means that it is now impossible for you to accidentally transmit your password in cleartext by visiting http://www.thinktankforums.com/ .
try it out! log in, then visit http://www.thinktankforums.com/ .
i'm pretty proud of r377 . :)
so now that I kind of understand how all this key, signing request, and certificate stuff works, I have a simple question. do you have a passphrase on the key that you use, lucas? I know it's a good idea to have one, but then you have to remember to input it every time you restart a service that uses the relevant certificate. it's kind of a pain, so I've just been doing keys with no passphrases for services.
yes, i use passphrases.
which means if my vps reboots and i'm not around, web services will not restart. :o
which means if my vps reboots and i'm not around, web services will not restart. :o
yeah, that's another part of what I was concerned about :/. but then I read something like "a compromise of the key means a compromise of the server" and I get scared again. if someone gets a hold of a private key, can they decrypt and logged encrypted information that they had been gathering?
i don't know
> web services will not restart
this just happened. i was running `apt-get upgrade`, apache restarted during the process, and i wasn't around to type in the passphrase. :/
this just happened. i was running `apt-get upgrade`, apache restarted during the process, and i wasn't around to type in the passphrase. :/
haha, I noticed :).
wow, it's already time to renew the certificate! it seems like it was just yesterday that ttf got ssl.
Why don't you use a self-signed cert ?
because it's not very friendly.
Not friendly as in browser warnings ?
yeah
I think it is time for me to buy an ssl cert. why'd you go with namecheap, lucas?
i read that godaddy's ca authority isn't that great. i also read that rapidssl is ok. namecheap seemed to be the cheapest seller of rapidssl certs.
I think I'll do all this tomorrow. then I can have https login to my site's admin interface :). and no more self-signed certs!
Free proper SSL?
http://www.h-online.com/security/features/SSL … 06862.html
Haven't checked it out yet though....
http://www.h-online.com/security/features/SSL … 06862.html
SSL for free
Setting up free certificates
by Daniel Bachfeld
Owning a web server that has its own SSL certificate from a registered Certificate Authority (so it won't trigger any browser warnings) does have its advantages. However, the price of a certificate issued by Verisign or a similar vendor usually tends to put a quick end to such fanciful ideas. Israeli vendor StartSSL offers free SSL server certificates that are valid for a year.
Since StartSSL's root certificates are already included in all the mainstream browsers, opening a certificate from the vendor doesn't trigger any error messages. This article gives examples of all the steps required to add StartSSL certification, from signing up with StartSSL to integrating the certificate into an Apache web server under Linux.
Haven't checked it out yet though....
Hmm, going to www.startssl.com gave me warning in Opera, but not in Firefox ...
oh man, i was about to go insane with apache configuration issues.
it's all perfect now, though!
-----
208.75.85.80 listens on ports 80 (http) and 443 (https) for:
www.wingedleopard.net
208.78.102.121 listens on ports 80 (http) and 443 (https) for:
www.thinktankforums.com
208.75.85.33 listens on port 80 (http) for:
wingedleopard.net thinktankforums.com lucasreddinger.com www.lucasreddinger.com wingedleopard.com www.wingedleopard.com lucasreddingerphoto.com www.lucasreddingerphoto.com lucasreddingerphotography.com www.lucasreddingerphotography.com neuroplastique.com www.neuroplastique.com ciew.wingedleopard.net francissmart.com www.francissmart.com codys.biz www.codys.biz
-----
importantly, thinktankforums.com used to be on 208.78.102.121. i didn't like that, because when someone would visit https://thinktankforums.com/ , they would get angry messages.
likewise, wingedleopard.net used to be on 208.75.85.80. i didn't like that, because when someone would visit https://wingedleopard.net/ , they would get angry messages.
all better now!
it's all perfect now, though!
-----
208.75.85.80 listens on ports 80 (http) and 443 (https) for:
www.wingedleopard.net
208.78.102.121 listens on ports 80 (http) and 443 (https) for:
www.thinktankforums.com
208.75.85.33 listens on port 80 (http) for:
wingedleopard.net thinktankforums.com lucasreddinger.com www.lucasreddinger.com wingedleopard.com www.wingedleopard.com lucasreddingerphoto.com www.lucasreddingerphoto.com lucasreddingerphotography.com www.lucasreddingerphotography.com neuroplastique.com www.neuroplastique.com ciew.wingedleopard.net francissmart.com www.francissmart.com codys.biz www.codys.biz
-----
importantly, thinktankforums.com used to be on 208.78.102.121. i didn't like that, because when someone would visit https://thinktankforums.com/ , they would get angry messages.
likewise, wingedleopard.net used to be on 208.75.85.80. i didn't like that, because when someone would visit https://wingedleopard.net/ , they would get angry messages.
all better now!
fuck i hate that link formatting code sometimes. it strips "\n". :(