Loading...
  OR  Zero-K Name:    Password:   

Website Suggestion: HTTPS Upgrade

9 posts, 764 views
Post comment
Filter:    Player:  
sort
6 years ago
In light to the growing threat of Cybercrime these days, I feel that this should actually be an important thing to implement in the website.
+2 / -0
6 years ago
The site already has an https version. I personally added a custom rule for HTTPS Everywhere so that I only access the https version of zero-k.info even if I click a plain http link, but that's just my personal solution. It might be better in general for the http site to be redirected to https.
+5 / -0

6 years ago
this site already so slow... imagine that with HTTPs calculations... awwww
+0 / -3


6 years ago
There is already a GitHub ticket for this which is being worked on:
https://github.com/ZeroK-RTS/Zero-K-Infrastructure/issues/1795

USrankcathartes: I'm assuming most people don't have that enabled, and browse the site unsecured by default. Also, Firefox tells me the site is only partially secured because external images, etc.

Some of the minor stuff is already done (but not updated in the ticket yet), but the biggest change is to force people to use https. Is it needed? This isn't a bank, or a social networking site. There is no personal, financial or medical information to protect. So, ehh. I don't have a strong feeling either way -- would be nice, but probably not a huge priority especially considering the state of MatchMaker & balance.

+0 / -0

6 years ago
quote:
There is no personal, financial or medical information to protect.


the times/dates you spend ingame are recorded and visible to everyone. forum posts also. on admin interface there are login dates and IP addresses.
+0 / -0
quote:
the times/dates you spend ingame are recorded and visible to everyone. forum posts also.

This is not identifying information, though.
+1 / -0
6 years ago
quote:
this site already so slow... imagine that with HTTPs calculations... awwww

As pretty much everyone stopped work on optimising HTTP due to how hilariously unsafe it is, HTTPS is now actually faster.

quote:
This is not identifying information, though.

If there is one thing that we learned from the GAFA works, it's that everything is identifying information, and everything can be used against you more perniciously than we think.
A bit like how software development always takes much longer than planned, even when you already added much longer to your initial planning.
+1 / -0
quote:
If there is one thing that we learned from the GAFA works, it's that everything is identifying information, and everything can be used against you more perniciously than we think.
A bit like how software development always takes much longer than planned, even when you already added much longer to your initial planning.

If everything is dangerous identifying information, then the only course of action is to move everything on zkinfo to Futaba.
+1 / -0
Everything is dangerous and scary today XD
Just tried loading ZK page on HTTPS and works like a charm
Cheers
+1 / -0