Announcement

Collapse
No announcement yet.

Why is theologyonline not https secure?

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Why is theologyonline not https secure?

    why doesn't theologyonline have the 'https' prefix ensuring security.

  • #2
    Originally posted by WatchmanOnTheWall View Post
    why doesn't theologyonline have the 'https' prefix ensuring security.
    I have wondered about this too. I did a little research into this in relation to TOL. It appears that the security software they use, Securi, at its cheapest level, does not support https which may effectively eliminate https usage on TOL. The next level of coverage that includes https is about twice the price. In addition to this increased cost the usage of https takes more server "horsepower" to serve the same amount of bandwidth, i.e. user activity, so that is another factor as that would be another increase in the monthly costs of running the site.

    There are free options, open source, that would pretty much give the same level of security risk reduction, but I'm doubtful that anyone here has the skills to provide the application security that Securi offers. How good Securi is, i.e. effective at risk reduction, I don't know. I do know the open source options that are available are pretty good, but the learning curve to use them effectively is pretty steep. That equals a lot of time spent in learning how to use them.

    Whether I'm right or wrong in my conclusions as to why https is not used here can only be answered if Knight chooses to speak to the subject.
    “Liberty cannot be established without morality, nor morality without faith.”
    ― Alexis de Tocqueville, Democracy in America

    “One and God make a majority.”
    ― Frederick Douglass

    Comment


    • #3
      Originally posted by ffreeloader View Post
      I have wondered about this too. I did a little research into this in relation to TOL. It appears that the security software they use, Securi, at its cheapest level, does not support https which may effectively eliminate https usage on TOL. The next level of coverage that includes https is about twice the price. In addition to this increased cost the usage of https takes more server "horsepower" to serve the same amount of bandwidth, i.e. user activity, so that is another factor as that would be another increase in the monthly costs of running the site.

      There are free options, open source, that would pretty much give the same level of security risk reduction, but I'm doubtful that anyone here has the skills to provide the application security that Securi offers. How good Securi is, i.e. effective at risk reduction, I don't know. I do know the open source options that are available are pretty good, but the learning curve to use them effectively is pretty steep. That equals a lot of time spent in learning how to use them.

      Whether I'm right or wrong in my conclusions as to why https is not used here can only be answered if Knight chooses to speak to the subject.
      Thanks, that may explain the 'light touch' Moderation here.

      Comment

      Working...
      X