INTERACT FORUM
More => Old Versions => Media Center 12 (Development Ended) => Topic started by: dcwebman on August 30, 2007, 07:41:36 am
-
I am really appreciating the effort put into Pix01 and will probably end up using it more. That being so, here's just a couple minor comments.
1. From the home page after you click to sign in, you can get an SSL Certificate warning message. Firefox clarifies it that 'You have attempted to establish a connection with "www.pix01.com". However, the security certificate presented belongs to "pix01.com".' Is this going to get fixed?
2. Not that I don't like lots of browser windows open, but I don't see the purpose of opening a new browser window when I click Sign In from the home page. If it didn't, that way when I Sign Out from my gallery list, I'm brought right back to the home page. For viewing galleries once signed in, opening new windows is fine.
-
I am really appreciating the effort put into Pix01 and will probably end up using it more. That being so, here's just a couple minor comments.
1. From the home page after you click to sign in, you can get an SSL Certificate warning message. Firefox clarifies it that 'You have attempted to establish a connection with "www.pix01.com". However, the security certificate presented belongs to "pix01.com".' Is this going to get fixed?
We were too cheap to buy a certificate for the site (a few hundred dollars) but we'll get this done sooner or later.
2. Not that I don't like lots of browser windows open, but I don't see the purpose of opening a new browser window when I click Sign In from the home page. If it didn't, that way when I Sign Out from my gallery list, I'm brought right back to the home page. For viewing galleries once signed in, opening new windows is fine.
Not sure on that one. We'll take a look.
Thanks for the feedback.
-
SSL certificates for as low as $19.99/year.
https://www.godaddy.com/gdshop/ssl/compare.asp?ci=9040
There are lots of other choices out there for SSL certificates that are cheaper than $100/year.
-
Thanks.
-
We were too cheap to buy a certificate for the site
If i am not mistaken, I think Pix01 was a Public test\beta
that may or may not have stayed as a option in MC
And may or may not at some point be free.
Can Someone tell me what is the point in having a SSL certificate, Cause I have no clue.
-
It certifies that the site is the one you think it is. It's an independent verification of legitimacy.
Without it, an evil site could trap your input and connect you to a site that looked and acted like microsoft.com or google.com or ....
Ed Felten is an expert on web spoofing (http://www.cs.princeton.edu/sip/pub/spoofing.html).
-
I found this
Data thieves hit Monster.com site
http://www.boston.com/business/articles/2007/08/22/data_thieves_hit_monstercom_site/ (http://www.boston.com/business/articles/2007/08/22/data_thieves_hit_monstercom_site/)
they use TRUSTe (Min $600)
If they are SSL secure, and that's one thing TRUSTe checks, and they are hit how safe are they really?
And Godaddy Got Some Cheep And Some Expensive Certificates, I am not sure why this should be so expensive. Even more so if it does not work all that well.
-
The ssl cert from a trusted authority just insures that the data you are sending (encrypted) is to the actual domain/machine that you think you are sending to, backed up by the say-so of that authority that your server REALLY is the machine it's claiming to be.
Once the data gets to the destination server, it's up to them to keep it safe. The secure transactions to monsters server were secure but once there the data served another purpose :(
What you see when a site uses it's own certificate authority is that your browser will pop-up a box saying that the certificate authority is unknown (like when pix01 was using a certificate issued by JRiver). It's up to you then to check what you see in the popup box and decide whether or not you believe it.
Odd as it may seem, I've run into commerce sites using self generated certificates, makes me a little nervous about their priorities as a commerce site if they didn't want to spend a few bucks on a real cert.
Also I've run into many misconfigured secure sites in which the servers name in the cert doesn't exactly match the servers real dns name and that will generate a popup box too, sigh...
-
I just ordered a SSL Certificate for one of my Extra Top-Secret Supper Stealth Secure Test Domain\Hosting Sites.
I Just Need To Figure Out What My Password And User Name Is
That's Locked In A Safe, And Only My Wife Has The Combination
-
.....
2. Not that I don't like lots of browser windows open, but I don't see the purpose of opening a new browser window when I click Sign In...
firefox with tabmix plus extension fix that easily :)
-
I guess that means that she is a Trusted Authority and that she believes you are certifiable. You're all set. ;)
-
and that she believes you are certifiable
Yes, I Am certifiable, By More Than One Source With Credentials