User Tag List

Results 1 to 3 of 3

Thread: Why is theologyonline not https secure?

  1. #1
    Over 2500 post club WatchmanOnTheWall's Avatar
    Join Date
    Feb 2017
    Posts
    2,617
    Thanks
    334
    Thanked 249 Times in 206 Posts

    Blog Entries
    2
    Mentioned
    8 Post(s)
    Tagged
    0 Thread(s)
    Rep Power
    111355

    Why is theologyonline not https secure?

    why doesn't theologyonline have the 'https' prefix ensuring security.

  2. #2
    Over 750 post club
    Join Date
    Oct 2017
    Posts
    957
    Thanks
    50
    Thanked 506 Times in 348 Posts

    Mentioned
    6 Post(s)
    Tagged
    0 Thread(s)
    Rep Power
    160120
    Quote Originally Posted by WatchmanOnTheWall View Post
    why doesn't theologyonline have the 'https' prefix ensuring security.
    I have wondered about this too. I did a little research into this in relation to TOL. It appears that the security software they use, Securi, at its cheapest level, does not support https which may effectively eliminate https usage on TOL. The next level of coverage that includes https is about twice the price. In addition to this increased cost the usage of https takes more server "horsepower" to serve the same amount of bandwidth, i.e. user activity, so that is another factor as that would be another increase in the monthly costs of running the site.

    There are free options, open source, that would pretty much give the same level of security risk reduction, but I'm doubtful that anyone here has the skills to provide the application security that Securi offers. How good Securi is, i.e. effective at risk reduction, I don't know. I do know the open source options that are available are pretty good, but the learning curve to use them effectively is pretty steep. That equals a lot of time spent in learning how to use them.

    Whether I'm right or wrong in my conclusions as to why https is not used here can only be answered if Knight chooses to speak to the subject.

  3. #3
    Over 2500 post club WatchmanOnTheWall's Avatar
    Join Date
    Feb 2017
    Posts
    2,617
    Thanks
    334
    Thanked 249 Times in 206 Posts

    Blog Entries
    2
    Mentioned
    8 Post(s)
    Tagged
    0 Thread(s)
    Rep Power
    111355
    Quote Originally Posted by ffreeloader View Post
    I have wondered about this too. I did a little research into this in relation to TOL. It appears that the security software they use, Securi, at its cheapest level, does not support https which may effectively eliminate https usage on TOL. The next level of coverage that includes https is about twice the price. In addition to this increased cost the usage of https takes more server "horsepower" to serve the same amount of bandwidth, i.e. user activity, so that is another factor as that would be another increase in the monthly costs of running the site.

    There are free options, open source, that would pretty much give the same level of security risk reduction, but I'm doubtful that anyone here has the skills to provide the application security that Securi offers. How good Securi is, i.e. effective at risk reduction, I don't know. I do know the open source options that are available are pretty good, but the learning curve to use them effectively is pretty steep. That equals a lot of time spent in learning how to use them.

    Whether I'm right or wrong in my conclusions as to why https is not used here can only be answered if Knight chooses to speak to the subject.
    Thanks, that may explain the 'light touch' Moderation here.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
About us
Since 1997 TheologyOnline (TOL) has been one of the most popular theology forums on the internet. On TOL we encourage spirited conversation about religion, politics, and just about everything else.

follow us