INTERACT FORUM

Please login or register.

Login with username, password and session length
Advanced search  
Pages: [1]   Go Down

Author Topic: Pix01.com comments  (Read 1839 times)

dcwebman

  • Citizen of the Universe
  • *****
  • Posts: 2154
Pix01.com comments
« on: August 30, 2007, 07:41:36 am »

I am really appreciating the effort put into Pix01 and will probably end up using it more. That being so, here's just a couple minor comments.

1. From the home page after you click to sign in, you can get an SSL Certificate warning message. Firefox clarifies it that 'You have attempted to establish a connection with "www.pix01.com". However, the security certificate presented belongs to "pix01.com".'  Is this going to get fixed?

2. Not that I don't like lots of browser windows open, but I don't see the purpose of opening a new browser window when I click Sign In from the home page. If it didn't, that way when I Sign Out from my gallery list, I'm brought right back to the home page. For viewing galleries once signed in, opening new windows is fine.
Logged
Jeff

JimH

  • Administrator
  • Citizen of the Universe
  • *****
  • Posts: 72444
  • Where did I put my teeth?
Re: Pix01.com comments
« Reply #1 on: August 30, 2007, 09:21:41 am »

I am really appreciating the effort put into Pix01 and will probably end up using it more. That being so, here's just a couple minor comments.

1. From the home page after you click to sign in, you can get an SSL Certificate warning message. Firefox clarifies it that 'You have attempted to establish a connection with "www.pix01.com". However, the security certificate presented belongs to "pix01.com".'  Is this going to get fixed?
We were too cheap to buy a certificate for the site (a few hundred dollars) but we'll get this done sooner or later.
Quote
2. Not that I don't like lots of browser windows open, but I don't see the purpose of opening a new browser window when I click Sign In from the home page. If it didn't, that way when I Sign Out from my gallery list, I'm brought right back to the home page. For viewing galleries once signed in, opening new windows is fine.
Not sure on that one.  We'll take a look.

Thanks for the feedback.
Logged

dcwebman

  • Citizen of the Universe
  • *****
  • Posts: 2154
Re: Pix01.com comments
« Reply #2 on: August 31, 2007, 09:11:22 am »

SSL certificates for as low as $19.99/year.
https://www.godaddy.com/gdshop/ssl/compare.asp?ci=9040

There are lots of other choices out there for SSL certificates that are cheaper than $100/year.
Logged
Jeff

JimH

  • Administrator
  • Citizen of the Universe
  • *****
  • Posts: 72444
  • Where did I put my teeth?
Re: Pix01.com comments
« Reply #3 on: August 31, 2007, 09:11:47 am »

Thanks.
Logged

KingSparta

  • MC Beta Team
  • Citizen of the Universe
  • *****
  • Posts: 20063
Re: Pix01.com comments
« Reply #4 on: August 31, 2007, 10:01:24 am »

Quote
We were too cheap to buy a certificate for the site

If i am not mistaken, I think Pix01 was a Public test\beta

that may or may not have stayed as a option in MC

And may or may not at some point be free.

Can Someone tell me what is the point in having a SSL certificate, Cause I have no clue.
Logged
Retired Military, Airborne, Air Assault, And Flight Wings.
Model Trains, Internet, Ham Radio, Music
https://MyAAGrapevines.com
https://centercitybbs.com
Fayetteville, NC, USA

JimH

  • Administrator
  • Citizen of the Universe
  • *****
  • Posts: 72444
  • Where did I put my teeth?
Re: Pix01.com comments
« Reply #5 on: August 31, 2007, 10:04:19 am »

It certifies that the site is the one you think it is.  It's an independent verification of legitimacy.

Without it, an evil site could trap your input and connect you to a site that looked and acted like microsoft.com or google.com or ....

Ed Felten is an expert on web spoofing.
Logged

KingSparta

  • MC Beta Team
  • Citizen of the Universe
  • *****
  • Posts: 20063
Re: Pix01.com comments
« Reply #6 on: August 31, 2007, 10:49:08 am »

I found this

Data thieves hit Monster.com site

http://www.boston.com/business/articles/2007/08/22/data_thieves_hit_monstercom_site/

they use TRUSTe (Min $600)

If they are SSL secure, and that's one thing TRUSTe checks, and they are hit how safe are they really?

And Godaddy Got Some Cheep And Some Expensive Certificates, I am not sure why this should be so expensive. Even more so if it does not work all that well.
Logged
Retired Military, Airborne, Air Assault, And Flight Wings.
Model Trains, Internet, Ham Radio, Music
https://MyAAGrapevines.com
https://centercitybbs.com
Fayetteville, NC, USA

bob

  • Administrator
  • Citizen of the Universe
  • *****
  • Posts: 13874
Re: Pix01.com comments
« Reply #7 on: August 31, 2007, 12:02:10 pm »

The ssl cert from a trusted authority just insures that the data you are sending (encrypted) is to the actual domain/machine that you think you are sending to, backed up by the say-so of that authority that your server REALLY is the machine it's claiming to be.

Once the data gets to the destination server, it's up to them to keep it safe. The secure transactions to monsters server were secure but once there the data served another purpose :(

What you see when a site uses it's own certificate authority is that your browser will pop-up a box saying that the certificate authority is unknown (like when pix01 was using a certificate issued by JRiver). It's up to you then to check what you see in the popup box and decide whether or not you  believe it.

Odd as it may seem, I've run into commerce sites using self generated certificates, makes me a little nervous about their priorities as a commerce site if they didn't want to spend a few bucks on a real cert.

Also I've run into many misconfigured secure sites in which the servers name in the cert doesn't exactly match the servers real dns name and that will generate a popup box too, sigh...

Logged

KingSparta

  • MC Beta Team
  • Citizen of the Universe
  • *****
  • Posts: 20063
Re: Pix01.com comments
« Reply #8 on: August 31, 2007, 02:01:06 pm »

I just ordered a SSL Certificate for one of my Extra Top-Secret Supper Stealth Secure Test Domain\Hosting Sites.

I Just Need To Figure Out What My Password And User Name Is

That's Locked In A Safe, And Only My Wife Has The Combination




Logged
Retired Military, Airborne, Air Assault, And Flight Wings.
Model Trains, Internet, Ham Radio, Music
https://MyAAGrapevines.com
https://centercitybbs.com
Fayetteville, NC, USA

Lasse_Lus

  • Citizen of the Universe
  • *****
  • Posts: 999
Re: Pix01.com comments
« Reply #9 on: August 31, 2007, 02:18:06 pm »


.....
2. Not that I don't like lots of browser windows open, but I don't see the purpose of opening a new browser window when I click Sign In...


firefox with tabmix plus extension fix that easily  :)
Logged
MT5FR

JimH

  • Administrator
  • Citizen of the Universe
  • *****
  • Posts: 72444
  • Where did I put my teeth?
Re: Pix01.com comments
« Reply #10 on: August 31, 2007, 02:52:25 pm »

I guess that means that she is a Trusted Authority and that she believes you are certifiable.  You're all set.   ;)
Logged

KingSparta

  • MC Beta Team
  • Citizen of the Universe
  • *****
  • Posts: 20063
Re: Pix01.com comments
« Reply #11 on: August 31, 2007, 03:00:41 pm »

Quote
and that she believes you are certifiable

Yes, I Am certifiable, By More Than One Source With Credentials
Logged
Retired Military, Airborne, Air Assault, And Flight Wings.
Model Trains, Internet, Ham Radio, Music
https://MyAAGrapevines.com
https://centercitybbs.com
Fayetteville, NC, USA
Pages: [1]   Go Up