FAS has upgraded our forum security. Some members may need to log in again. If you are unable to remember your login information, please email food.allergy.supt@flash.net and we will help you get back in. Thanks for your patience!

Welcome > FAS Committee

FAS "Not Secure" in browser

<< < (2/10) > >>

rebekahc:
Okay, I've been working with our provider and we should be good to go with https now.  Some members may need to enter their password again.  If anyone has trouble remembering your password and no longer has access to the email address linked with your account, please get in touch with me and I can either update your email address in your profile and then you can use password recovery or I can just assign you a new temporary password to gain access and you can set a new one in your profile.

Stinky10:
I'd be happy to contribute some $$$

also the site is really slow today

Stinky10:
and  I AM seeing the "Not secure" to the left of https://foodallergysupport.olicentral.com/index.php?action=post;topic=12456.0;last_msg=281820

rebekahc:
Stinky, thanks for offering to contribute.  :smooch:  We’re looking at how to work the logistics of that, now.  Once we have a plan in place, we’ll post about it.

I’m getting the https on everything I see and Firefox no longer shows the lock with the red line through it. Maybe if you log out and log back in?

nameless:
Thanks! It shows as secure https to me now, which is good.

It still might warrant a warning to folks to change their password and if they used the same password elsewhere to change that as well. Not sure ya'lls background, and I don't want to come off as "mansplainy" (not sure what the female equivalent of that is?) It's not  my intention...OK -- so if a website isn't https and just http that means that if a user logs in then anyone on their wifi network (like it's a public one, Xfinity, Starbucks, etc.) or sniffing around cell tower traffic will be able to read that login information. It's not protected or encrypted very well. Then, if the email is sniffable, the bad-person will go around and try various websites (usually with a script or bot) trying to log in with that email address and password combo.

Not sure what the risk is for OLICentral sites and if they use a different layer/protocol that would help protect, but I'm guessing it doesn't.

I think setting up a Go Fund Me or something to get the funds needed, folks would do it :)

Navigation

[0] Message Index

[#] Next page

[*] Previous page

Reply

Go to full version