Administrators Alex Posted September 29, 2014 Administrators Share Posted September 29, 2014 Hi guys, Over the last couple of days I've made a transition from being a plain, normal site that uses http:// to a fancy, high-tech secure website that uses https:// As I'm sure you all know, there have been (and still may be) a few kinks in the operation. However, I'm confident that we can get the small issues worked out and have the same functionality we did on http:// Using SSL is important to protect your information when you're accessing the site. It ensures a secure, encrypted connection between you and the website. Using SSL also gives us a boost in Google's Search Rankings, which is always important. There is currently one annoying issue, and it has to do with links to game pages. If you try to access them via http:// instead of https:// it may prompt you to login when you're already logged in. I'm working on a fix for that ASAP, but in the meantime try to update your links to https:// instead of http:// if you're linking to the game on off-site forums, etc. Thanks guys, and enjoy the added protection and security! 2 Is there a bug? Report It | Not understanding game mechanics? Ask About It | Got a good idea? Suggest ItForums Rules | Game Link Link to comment Share on other sites More sharing options...
Seryozha Nikanor Posted September 29, 2014 Share Posted September 29, 2014 Also fix the map and the IRC's not appearing. Please and tank you. Link to comment Share on other sites More sharing options...
WISD0MTREE Posted September 29, 2014 Share Posted September 29, 2014 Oh, so that is why my password wasn't saved anymore. Link to comment Share on other sites More sharing options...
Wilhelm IV Posted September 29, 2014 Share Posted September 29, 2014 Seems like a nice change to me, will increase security at little cost. I myself and I'm sure others don't want somebody sniffing my internet connections and using it to access my account, encrypting connections to the site will stop hackers from getting into peoples accounts. Can I make the suggestion you test things before adding them? I'm sure the links not working here has gone and effected quite a few people. Just make everything work and then add it...rather then adding something like this without fixing the other problems beforehand. Great addition otherwise, but I was just concerned about the problems with links. Not sure if we want a repeat of that, do we not? Link to comment Share on other sites More sharing options...
Nathan I Posted September 29, 2014 Share Posted September 29, 2014 We have a big HTTPS bug, Sheepy you will need to fix it, because you must get a certificate. Link to comment Share on other sites More sharing options...
Administrators Alex Posted September 29, 2014 Author Administrators Share Posted September 29, 2014 We have a big HTTPS bug, Sheepy you will need to fix it, because you must get a certificate. The website has a certificate, I'm not sure what bug you're talking about. Also fix the map and the IRC's not appearing. Please and tank you. These were already fixed when I made the announcement. Is there a bug? Report It | Not understanding game mechanics? Ask About It | Got a good idea? Suggest ItForums Rules | Game Link Link to comment Share on other sites More sharing options...
Administrators Alex Posted September 29, 2014 Author Administrators Share Posted September 29, 2014 I've changed things so SSL isn't forced by the server, and it isn't even default on the forums anymore due to a couple of errors. However, all the links in-game are https:// so once you've navigated to at least one page, even if on http://, you'll most likely be https:// soon enough for the added security. Tl;dr - It's not mandated, but you're likely to use it in-game. This should clear up the linking and logging in issues. Is there a bug? Report It | Not understanding game mechanics? Ask About It | Got a good idea? Suggest ItForums Rules | Game Link Link to comment Share on other sites More sharing options...
Outburst Posted October 23, 2014 Share Posted October 23, 2014 Sheepy, are you aware of the SSL 3.0 exploit? Essentially a Man in the Middle attack that exploits SSL 3.0. http://en.wikipedia.org/wiki/POODLE Link to comment Share on other sites More sharing options...
Administrators Alex Posted October 23, 2014 Author Administrators Share Posted October 23, 2014 Sheepy, are you aware of the SSL 3.0 exploit? Essentially a Man in the Middle attack that exploits SSL 3.0. http://en.wikipedia.org/wiki/POODLE I wasn't aware of that, no, however during the last exploit (Heartbleed) our host had that patched a week before the big deal even hit the news, so I'm feeling pretty secure with them. I'll of course check into it more and make sure that they've got it taken care of, but you also have to remember that you're not sending me your social security numbers or bank accounts on here either, at worst they might find out your e-mail or, gasp, your nation name. Is there a bug? Report It | Not understanding game mechanics? Ask About It | Got a good idea? Suggest ItForums Rules | Game Link Link to comment Share on other sites More sharing options...
Administrators Alex Posted October 23, 2014 Author Administrators Share Posted October 23, 2014 We have a big HTTPS bug, Sheepy you will need to fix it, because you must get a certificate. We have a certificate, if your using Google chrome you can click the little green padlock in the top left corner (of the website, not the forums) and it'll show you. Is there a bug? Report It | Not understanding game mechanics? Ask About It | Got a good idea? Suggest ItForums Rules | Game Link Link to comment Share on other sites More sharing options...
Outburst Posted October 24, 2014 Share Posted October 24, 2014 Just figured I would let you know. Wasn't sure if you controlled the ssl/tls settings or not. Simplest fix is to disable server support for ssl3.0 1 Link to comment Share on other sites More sharing options...
Recommended Posts