Add SSL https: ability To Linux Mint Community and Forum

Chat about just about anything else
Post Reply
User avatar
ASmith
Level 3
Level 3
Posts: 131
Joined: Tue Nov 08, 2011 1:47 am

Add SSL https: ability To Linux Mint Community and Forum

Post by ASmith »

Many savy Internet users are fully deploying the full use of SSL (secure https:) access to blogs,forums,download sites and social media outlets to minimise their plain text exposure to various agencys and ISP snoopers.

Several popular Internet browsers have free addon's to pursue a secure SSL https: connection with that remote site if at all possible and some have pushed the force TLS security level protocols in attempts to implement secure remote Internet connections. [1][2][3]

One thing which is often overlooked is not only determining what encryption and bit level of encryption is deployed for your SSL https: remote session but also making certain only the strongest encryptions such as AES 256bit are used (provided the website supports it) and not have older websites silently use a weak, broken encryption while showing your browser a padlock symbol of being a secure SSL https: connection. The fine folks at Calomel have focused on dealing precisely with that thru free browser (Firefox) addon's AND step by step directions on how to remove the weak, broken encryption modes from your browser forcing remote servers to only use the strongest encryption your browser supports.[4][5][6]

The Calomel SSL Validation free browser addon also tells you precisely what encryption is being used if any, what bit level, what the certificates are and its also color coated to see at a mere glance if anyone intercepts and breaks your ongoing SSL session. I don't know of ANY other browser addon which tells you immediately if an agency or ISP snooper has broken your SSL session midstream, ALL others I have seen continue to show a simple padlocked symbol falsely telling 'all's well'. The Calomel SSL Validation icon however changes immediately to a Red Blotch, often reloading the connection defeats the attempted snooping and re-secures the SSL secure connection.

Please Vote YES for the Linux Mint Community to enable SSL https: sessions here in the Community and Forum websites not only helping USA citizens but many in the Middle Eastern regions who are doing everything they can to maintain their freedoms, privacys and remain safe while posting on the Internet.[7]

Vote Here: [url]http://community.linuxmint.com/idea/view/4121[/url]

References:

[1] HTTPS Everywhere a Secure,Transparent Encrypted Web Sessions free addon to Firefox and Chrome Browsers https://www.eff.org/https-everywhere
[2] ForceTLS And Strict-Transport-Security Firefox browser addon also extend forcing https: secure,encrypted Internet use [url]http://is.gd/F94kv0[/url]
[3] Download HTTPS Everywhere Firefox Browser addon to secure and transparently encrypt your Internet Data [url]http://is.gd/cL7ua5[/url]
[4] Calomel SSL Validation free Firefox addon https://calomel.org/firefox_ssl_validation.html
[5] Calomel Open Source Research and Multiple Free Bonus References https://calomel.org
[6] Proxy Firefox through a SSH tunnel a fast, privately secured tunnel to transfer web pages and dns queries https://calomel.org/firefox_ssh_proxy.html

[7] Vote YES to have SSL https: connections accepted by Linux Mint Community and Forum [url]http://community.linuxmint.com/idea/view/4121[/url]

User avatar
catweazel
Level 19
Level 19
Posts: 9895
Joined: Fri Oct 12, 2012 9:44 pm
Location: Australian Antarctic Territory

Re: Add SSL https: ability To Linux Mint Community and Forum

Post by catweazel »

"There is, ultimately, only one truth -- cogito, ergo sum -- everything else is an assumption." - Me, my swansong.

User avatar
ASmith
Level 3
Level 3
Posts: 131
Joined: Tue Nov 08, 2011 1:47 am

Re: Add SSL https: ability To Linux Mint Community and Forum

Post by ASmith »

Only the oldest and often most abandoned websites still have non-SSL logins. Its simply common sense to not have login information sent in plain text. On a developer,computer user active website to not have SSL login's, its a oversight clear and simple.

I think the vast majority here don't view wanting SSL to encrypt their login information as paranoid, but common sense which all newer websites, developers and managers should certainly deploy.

Those that want to continue logging in by sending plain text of their password/username can certainly do so via the present http: login, while those that do not could switch over to https:

Please Vote YES for the Linux Mint Community to enable SSL https: sessions here in the Community and Forum websites.

Vote Here: [url]http://community.linuxmint.com/idea/view/4121[/url]

Post Reply

Return to “Open chat”