WinMX World :: Forum

Discussion => WinMx World News => Topic started by: GhostShip on January 02, 2018, 10:56:54 pm

Title: EFF Urges HTTPS As Standard
Post by: GhostShip on January 02, 2018, 10:56:54 pm
An interesting article that notes the global increase in HTTPs usage across the web.

The movement to encrypt the web reached milestone after milestone in 2017. The web is in the middle of a massive change from non-secure HTTP to the more secure, encrypted HTTPS protocol. All web servers use one of these two protocols to get web pages from the server to your browser. HTTP has serious problems that make it vulnerable to eavesdropping and content hijacking. By adding Transport Layer Security (or TLS, a prior version of which was known as Secure Sockets Layer or SSL) HTTPS fixes most of these problems. That’s why EFF, and many like-minded supporters, have been pushing for web sites to adopt HTTPS by default.

In February, the scales tipped. For the first time, approximately half of Internet traffic was protected by HTTPS. Now, as 2017 comes to a close, an average of 66% of page loads on Firefox are encrypted, and Chrome shows even higher numbers.

The slow clawback of privacy online is picking up speed it seems but lets be clear here, those whom often set up security systems have ways of gaming it when necessary and for their own national interests, there is no single certificate issuer and this means theres still scope for site-jacking and other tricks albeit with the cost of later discovery. 
Overall this is a good move ahead but its not a perfect world and you should always assume that your activities are being spied upon as certainly in the superpower nations and their coattail followers, they are.  :evil:
Title: Re: EFF Urges HTTPS As Standard
Post by: Pri on January 03, 2018, 04:43:53 am
My own sites made the move in 2016 to HTTPS everywhere. You guys should consider adding it to winmxworld, it gives your search ranking a slight boost over non-HTTPS sites in search engines. You can get free certs from letsencrypt (which is what I use) they'll be introducing free wildcard certs in February :)

Very easy to setup with Apache, IIS, NGINX. Whatever webserver you're using.