Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Wed 22 Oct 2014, 21:50
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Problem with murga-linux.com certificate
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 1 [10 Posts]  
Author Message
Hotdog


Joined: 29 Sep 2011
Posts: 109
Location: Georgia USA

PostPosted: Sun 08 Sep 2013, 23:07    Post subject:  Problem with murga-linux.com certificate  

In the wake of our governments continued spying on us, it makes sense to utilize whatever means we have to make secure connections whenever possible. It will not stop the spying but it does show that we citizens are not totally lame about the situation. To that end, when attempting to use https for our favourite forum, this is the response:
Quote:
(1) The server's name "www.murga-linux.com" does not match the certificate's name "ip-208-109-22-214.ip.secureserver.net". Somebody may be trying to eavesdrop on you.
(2) The certificate for "ip-208-109-22-214.ip.secureserver.net" is signed by the unknown Certificate Authority "ip-208-109-22-214.ip.secureserver.net". It is not possible to verify that this is a valid certificate.
(3) The certificate for "ip-208-109-22-214.ip.secureserver.net" expired 03/04/2009 10:17:00 PM GMT. The webmaster should update the certificate(s).

Understandably, a good certificate or no certificate at all is entirely up to the site owner, as it should be. So, this is not a complaint, just information for you to ponder.

_________________
Puppy 528, Full Install
Back to top
View user's profile Send private message 
tlchost

Joined: 05 Aug 2007
Posts: 1727
Location: Baltimore, Maryland USA

PostPosted: Sun 08 Sep 2013, 23:13    Post subject: Why?  

Why use https to access a public website that does no financial transactions?
Or are your public posts supposed to be secure?

Duh
Back to top
View user's profile Send private message Visit poster's website 
Hotdog


Joined: 29 Sep 2011
Posts: 109
Location: Georgia USA

PostPosted: Tue 10 Sep 2013, 18:25    Post subject:  

Duh,

Using HTTPS for all site features is an increasingly common practice nowadays and protects users (and sites) against a variety of Internet attacks. For instance, it defends against the ability of other people on a wifi network to spy on your use of the site or even take over your account. Credit card numbers aren't the only information that you may consider private or sensitive.

Sites like Google, Twitter, and Facebook now support HTTPS for non-financial information — for general privacy and security reasons. In fact, the Electronic Frontier Foundation encourages the use of a browser addon called HTTPS Everywhere, even making it available on their web site.

Like you, Duh, I used to consider HTTPS just for financial business. Now I am interested in making my communications as difficult as possible for anyone else, especially the government, to see. They may still get to my mundane and harmless ramblings but let them have to work for it.

_________________
Puppy 528, Full Install
Back to top
View user's profile Send private message 
tlchost

Joined: 05 Aug 2007
Posts: 1727
Location: Baltimore, Maryland USA

PostPosted: Tue 10 Sep 2013, 19:04    Post subject:  

Hotdog wrote:
it available on their web site.

Like you, Duh, I used to consider HTTPS just for financial business. Now I am interested in making my communications as difficult as possible for anyone else, especially the government, to see. They may still get to my mundane and harmless ramblings but let them have to work for it.


Apparently the operator of this forum doesn't attach that level of importance to the https protocol. Is your tin foil hat adjustable, or a specific size?
Back to top
View user's profile Send private message Visit poster's website 
Barkin


Joined: 12 Aug 2011
Posts: 727

PostPosted: Wed 11 Sep 2013, 06:14    Post subject: Re: Why?  

tlchost wrote:
Why use https to access a public website that does no financial transactions?
Or are your public posts supposed to be secure?

Duh

Not necessarily "Duh" : if you wanted to debate something in a public forum under a pseudonym, https could prevent eavesdroppers knowing your real identity. Eavsdroppers could also obtain your password communicated by http and impersonate you on that site.

wikipedia.org/HTTP_Secure wrote:
HTTP is insecure and is subject to man-in-the-middle and eavesdropping attacks, which can let attackers gain access to website accounts and sensitive information. HTTPS is designed to withstand such attacks and is considered secure against such attacks
https://en.wikipedia.org/wiki/HTTP_Secure#Difference_from_HTTP
you can't be too careful.jpg
 Description   https://secure.flickr.com/photos/robnwatkins/397488557/in/photostream/
 Filesize   14.3 KB
 Viewed   284 Time(s)

you can't be too careful.jpg

Back to top
View user's profile Send private message 
tlchost

Joined: 05 Aug 2007
Posts: 1727
Location: Baltimore, Maryland USA

PostPosted: Wed 11 Sep 2013, 06:29    Post subject: Re: Why?  

I like the hat. Is it multi-platform, or Linux only?
Back to top
View user's profile Send private message Visit poster's website 
Hotdog


Joined: 29 Sep 2011
Posts: 109
Location: Georgia USA

PostPosted: Sat 14 Sep 2013, 12:39    Post subject:  

Tlchost,

My apology regarding your name. It looked like "Duh" was a signature to these senior eyes. My tinfoil hat is adjustable. Sometimes I lend it to friends who did not know they needed one.

_________________
Puppy 528, Full Install
Back to top
View user's profile Send private message 
Karl Godt


Joined: 20 Jun 2010
Posts: 3972
Location: Kiel,Germany

PostPosted: Sat 14 Sep 2013, 13:32    Post subject:  

I get Invalid certificate message if the date in the BIOS resets to Anno -1970 BC because of drained battery on the MOBO .

HTH ?

Btw : Have the Kebap Paradox : http://uncyclopedia.wikia.com/wiki/Beer%27s_Law wpaaped in alu fooil .

Laughing
Back to top
View user's profile Send private message Visit poster's website 
tlchost

Joined: 05 Aug 2007
Posts: 1727
Location: Baltimore, Maryland USA

PostPosted: Sat 14 Sep 2013, 19:15    Post subject:  

Hotdog wrote:
Tlchost,

My apology regarding your name. It looked like "Duh" was a signature to these senior eyes.


Not a problem, I too have tired old eyes.....and it's good that you have an adjustable tinfoil hat....we need more things that are universal in nature...truly cross-platform.
Back to top
View user's profile Send private message Visit poster's website 
8-bit


Joined: 03 Apr 2007
Posts: 3382
Location: Oregon

PostPosted: Mon 16 Sep 2013, 00:16    Post subject:  

when so called secure protocols are being used, who knows if the NSA had a hand in their development and also had a back door installed as part of the code?
Other countries, substitute your government's security division for "NSA".

Also, remember that impatience plays in on a user's web browsing.
Say one installs NoScript in their browser.
But any time they cannot see some video or a page is missing some obvious content, they click on the option to "Temporarily allow this page."

Just what all are they allowing by clicking that option?

I also have visited sites that one would expect to have a valid certificate. And many do not.
One example was a third party site that provided health information to an insurer of a person or group.
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 1 of 1 [10 Posts]  
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Off-Topic Area » Security
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0669s ][ Queries: 13 (0.0048s) ][ GZIP on ]