Quote:
Originally Posted by Dude111
Http is as secure as its ever been.......
|
Which is NOT secure!
ANY site running on http can be intercepted and the contents of the site changed before it gets to your browser, https prevents this happening.
Of course, https encrypts all traffic between your browser & the server, so for example your password & any form you fill in, cannot be snooped upon.
Here's a very good article about why every website needs https
https://www.troyhunt.com/heres-why-y...e-needs-https/
There's a video with a demo of changing the contents of a site, without actually changing the site, just what is delivered to your browser.
But as others have said, https does not mean that the site itself is safe or secure, it's the connection to/from the server
Quote:
Originally Posted by Dude111
I have a question..... If these sites can do it w/o issues,why cant all sites??
I have been trying to get my friend who runs sitcomsonline.com/boards?styleid=1077 to enable http but he doesnt think it will work..... I have told him of city-data but he doesnt understand  |
All sites could allow http, but the vast majority of sites today choose to only allow https as it's more secure for all involved, simple as that.
If your friend does allow http then he may as well disable https altogether, no point in having it then.
Quote:
Originally Posted by Paul
Many sites simply do not need to be secure.
A news site for example, or indeed, any informational site.
|
News sites a prime example of needing https, imagine if the contents of the BBC news or any other news site was intercepted as per my link above?
There is no excuse for not having https these days, can be done totally for free with a little work.