HTTPS Support

LFlare · 2019-07-22 21:05:23

Hey,

Is it intended for the whole of http://www.proxmark.org to NOT have HTTPS/TLS support? I'm a little curious as to why we don't have TLS support.

mwalker · 2019-07-23 02:15:34

My view is the logon page should be https as we have usernames/passwords.

Given google wants every site to be https and is reporting them as not secure if not , it adds pressure to go ssl.

As to the content, this is an open forum as anyone can see it with/without a login and nothing private so not really needed.

So, its down to what can the webmaster and servers can support (i.e. the overhead of SSL on the servers CPU) and the cost of ssl.
Yes, letsencrypt is free, but again the webmaster would need to be able to set it up and have the auto renew working (as they only last 3 months and expired certificates would be worse then the "not secure" warning)

Tom5ive · 2019-07-23 04:59:47

Yep, at the stage where I don't want to log in to the site because its crazy insecure..

iceman · 2019-07-23 08:38:56

Yeah, old issue that has been proven a bit hard to fix. Search for https on forum and you see the threads about it.
To put it short. Neither 0xFFFF nor me has server access like a shell and the server runs several sites, so we can't just add a certificate without those rights to fiddle. Roel who operates the server has been hard to get hold of in this matter.
But yes, we are aware about this.

Proxmark3 community

Announcement

#1 2019-07-22 21:05:23

HTTPS Support

#2 2019-07-23 02:15:34

Re: HTTPS Support

#3 2019-07-23 04:59:47

Re: HTTPS Support

#4 2019-07-23 08:38:56

Re: HTTPS Support

Board footer