Asylum Feedback/Support

RE: Asylum security

204.94.81.82


[ Follow Ups ] [ Post Followup ] Thread: [ Display  All  Email ] [ Asylum Feedback/Support ]

This Post Has Been Edited by the Author

It's a new browser thing or a gift to the secure certificate vendors.
Basically, anywhere that there's a password dialog, you will get that
message unless there is a secure connection (https). In the past,
secure connections were used for commerce and entering credit card
numbers which we do. Now, they're pushing it for everything which is
inefficient btw. A secure connection doesn't support compression of the data, doesn't cache things like css and javascript and it requires multiple back and forth hand shakes.

Since we don't store any credit card data or anything else sensitive,
we haven't yet changed everything to avoid this message. It's also
more difficult and expensive because we use multiple servers and hosts
names, so we can't just buy one certificate for the domain, we need a
half dozen and it requires changing the code everywhere there is
'http' to be 'https' and it also requires a dedicated IP for each host
name.

Anyway, it's really of no concern. Once you login once, you never
enter your password again, so it's basically just an annoying message.

We are in the process of changing everything and hope to switch everything to secure connections soon.

-Rod


Follow Ups: