• Sign in to Neowin Faster!

    Create an account on Neowin to contribute and support the site.

Sign in to follow this  

HTTPS enabled for everyone at Neowin

Recommended Posts

Steven P.    15,002

On the news side of things, if you try to access the site at http://www.neowin.net you will be redirected to https://www.neowin.net 

 

The forums aren't forced to HTTPS yet (although anyone can access the forums this way), but it's on the list of things to do. This does not affect logging in via the forums , which is over HTTPS.

 

Due to the age of the site and various news articles and forum posts containing embedded non-secure content (over HTTP), people may notice mixed content warning messages, but this is also being looked into.

  • Like 8

Share this post


Link to post
Share on other sites
Boo Berry    2,264

It's about time! :D

Share this post


Link to post
Share on other sites
Steven P.    15,002

Well we have had logging in over https since the board software supported it, but yes I agree :p 

Share this post


Link to post
Share on other sites
count0nz    60

Nice... I've seen so many Changes at Neowin over the Years....
Must say things are looking Great! :)
Keep up the good work... Everyone... even the People who post Stuff... :) 
Its this Community that makes Neowin Great

Share this post


Link to post
Share on other sites
DaveLegg    1,017
1 hour ago, Boo Berry said:

It's about time! :D

You could load it via https previously, but now if you hit the news side of things on http, it will automatically redirect you to https. We'll be doing the same for the forums once we figure out what to do about all the embedded images in posts that use http rather than https to avoid users getting mixed-content warnings on every page

Share this post


Link to post
Share on other sites
Hum    6,933
1 hour ago, Steven P. said:

Due to the age of the site and various news articles and forum posts containing embedded non-secure content (over HTTP), people may notice mixed content warning messages, but this is also being looked into.

Neowin is getting better with age. :p

Share this post


Link to post
Share on other sites
Boo Berry    2,264
14 minutes ago, DaveLegg said:

We'll be doing the same for the forums once we figure out what to do about all the embedded images in posts that use http rather than https to avoid users getting mixed-content warnings on every page

This might help? https://invisionpower.com/files/file/7510-ssl-image-proxy/

Share this post


Link to post
Share on other sites
+Gary7    7,382
3 hours ago, Hum said:

Neowin is getting better with age. :p

Like a good wine.:)

Share this post


Link to post
Share on other sites
Mando    5,117

nice! Good effort Devs, :) 

Share this post


Link to post
Share on other sites
FunkyMike    1,865

Keep up the good work and well done!

 

Interesting bug .. I can't seem to use the like button in the Real World forum. Seems to be some kind of script issue from "unauthenticated sources" .. probably related to https?

Share this post


Link to post
Share on other sites
adrynalyne    13,077
2 hours ago, FunkyMike said:

Keep up the good work and well done!

 

Interesting bug .. I can't seem to use the like button in the Real World forum. Seems to be some kind of script issue from "unauthenticated sources" .. probably related to https?

Definitely. I guess they thought https could be enforced without correcting their hard-coded links :laugh:

 

 

Mixed Content: The page at 'https://www.neowin.net/forum/discover/unread/' was loaded over a secure connection, but contains a form which targets an insecure endpoint 'http://www.neowin.net/forum/search/'. This endpoint should be made available over a secure connection.

 

I am sure there are plenty more of these causing all sorts of interesting issues.

 

THis is a good first step but this forum is not properly using https yet, not really.

  • Like 1

Share this post


Link to post
Share on other sites
DaveLegg    1,017
9 hours ago, adrynalyne said:

Definitely. I guess they thought https could be enforced without correcting their hard-coded links :laugh:

 

Not really, you'll note the thread is about the fact https is enforced on the front page, not the forums, for exactly this reason. See my previous post for further clarification of this - exactly because the forums haven't been checked for full compatibility yet.

  • Like 2

Share this post


Link to post
Share on other sites
Boo Berry    2,264

@DaveLegg Looks like the plugin is being used, groovy!

 

On the main forum index, however, it looks like there's one mixed content warning for...

http://www.neowin.net/forum/style_images/global/vetstar.gif

There's likely others - if I encounter any I'll post them! :)

Share this post


Link to post
Share on other sites
DaveLegg    1,017
49 minutes ago, Boo Berry said:

@DaveLegg Looks like the plugin is being used, groovy!

 

On the main forum index, however, it looks like there's one mixed content warning for...


http://www.neowin.net/forum/style_images/global/vetstar.gif

There's likely others - if I encounter any I'll post them! :)

Yeah, installed a couple of days ago, looks like it's doing the job, thanks a lot for the recommendation!

 

I've fixed the vet star issue, let us know if you spot any others.

Share this post


Link to post
Share on other sites
Boo Berry    2,264

There's another one, @DaveLegg

 

http://pbs.twimg.com/profile_images/557299393309966338/5SKe8dmd_normal.jpeg

Share this post


Link to post
Share on other sites
DaveLegg    1,017
15 minutes ago, Boo Berry said:

There's another one, @DaveLegg

 


http://pbs.twimg.com/profile_images/557299393309966338/5SKe8dmd_normal.jpeg

Where are you seeing that one?

Share this post


Link to post
Share on other sites
Boo Berry    2,264

Main forum index.

Share this post


Link to post
Share on other sites
+Zlip792    495

Share this post


Link to post
Share on other sites
DaveLegg    1,017
1 hour ago, Zlip792 said:

Using Extension - moarTLS Analyzer on Chrome

 

I found following two links on Main Page:

 

 

Links don't matter so much, as the browser won't automatically load them into the page like it would with images, so they won't cause a mixed-content warning.

Share this post


Link to post
Share on other sites
Brandon H    3,509
On 9/29/2016 at 10:50 AM, DaveLegg said:

Yeah, installed a couple of days ago, looks like it's doing the job, thanks a lot for the recommendation!

 

I've fixed the vet star issue, let us know if you spot any others.

I'm still getting the mixed content warning for the vet star on the Forum Index

Share this post


Link to post
Share on other sites
DaveLegg    1,017

Should be fixed now, I forgot to clear the caches on the server

Share this post


Link to post
Share on other sites
Raa    1,583
On ‎25‎/‎09‎/‎2016 at 9:42 PM, Boo Berry said:

It's about time! :D

Why? What are they hiding that they require secure traffic for? :p

Share this post


Link to post
Share on other sites
LimeMaster    15,602
2 hours ago, Raa said:

Why? What are they hiding that they require secure traffic for? :p

It's not that. Google makes sites that use HTTPS appear higher on search results. :p

Share this post


Link to post
Share on other sites
Brandon H    3,509
10 hours ago, DaveLegg said:

Should be fixed now, I forgot to clear the caches on the server

No I'm still getting it on Forum Index.

 

it seems to be the vetstar in the "who's online" section near the bottom of the page causing it

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.