The Sanctuary
Site Discussion => Help & Suggestions => Topic started by: Spuff on October 19, 2014, 08:42:25 am
-
Are there any plans to enable support for HTTPS in the future? In the interest of keeping communications safe from interception, it would be a positive idea. I'm sure there are users here who access the site from the workplace/school/university and wouldn't want their actions to end up in the network logs ;) Or maybe you don't trust your ISP but can't afford a VPN, I dunno.
Edit: Just realised HTTPS is actually enabled, through Cloudflare. But it doesn't play well with the stylesheet by the looks of things.
-
Who really wears socks anymore?
-
Actually, I think it may be an easy deal to enable HTTPS for my hosting. If I'm not much mistaken, I would just move the server files over to the https folder.
-
It would be a nice layer of security. It's nice that the DDOS kids stopped their crying.
-
the server does have HTTPS running, and appears to have a valid cert as it'll redirect to HTTP without issue if you try to connect to it... I probably wouldn't move the entire site though, that may break relative paths. easiest option would be to symlink, but it may not be possible depending on the website control panel in use.
-
Actually, I think it may be an easy deal to enable HTTPS for my hosting. If I'm not much mistaken, I would just move the server files over to the https folder.
You don't need to move anything (to the best of my knowledge) You have a couple of options:
You can force everyone to use HTTPS by making an .htaccess rule which 301 redirects everything from HTTP to HTTPS.
You can leave HTTP and HTTPS working together. There's something up with the stylesheet though. Try it for yourself, load the site over HTTPS and you'll see what I mean.