Board
Teamleague Forum
posted at 2017-04-23 10:09 by mindlin
I notice with the new firefox that it tells you the login to teamleague site is 'unsecure'. I guess it's always been like that? Anyone care to comment? Thanks.
posted at 2017-04-23 10:31 by kurumim
I noticed it too, Mindlin (on both Firefox and Chrome), but to be honest I don't remember seeing any warning prior to the domain issue that kept the site down for a week. Does it have anything to do with that?
posted at 2017-04-23 22:21 by smallblackcat
Unsecure just means it's not an https site. This has nothing to do with the domain expiring.
posted at 2017-04-23 23:27 by kurumim
My bad then — I really didn't remember the warning. Thanks for the clarification.
posted at 2017-04-24 04:22 by nebulus
Perhaps one should ask the host if they can set up a Let's Encrypt certificate?
posted at 2017-04-24 18:05 by smallblackcat
It's certainly a reasonable thought. However there really isn't any privileged information being shared on this website (i.e. no personal or financial details), so we have not prioritised this.
posted at 2017-04-24 18:44 by mindlin
I don't agree completely. Although no transaction is taking place, you have to login with a password and this in itself can be important.
posted at 2017-04-24 21:21 by smallblackcat
True, though I regarding TL passwords I would advise people to use something case-specific in any case. Unlike with many websites requiring passwords, the process for re-setting your password (if you forget it) is fairly trivial with TL.
posted at 2017-07-03 07:32 by KayVee
My 2c (albeit 2 months late).
a) Certificates expire. Adding an additional maintenance just makes it error prone.
b) Firefox and other browsers made recent changes to highlight such sites - nothing has changed on TL side.
c) It's always best practice to use a site specific password - this is easier with password managers. That way, losing one password does not put user at any risk.
a) Certificates expire. Adding an additional maintenance just makes it error prone.
b) Firefox and other browsers made recent changes to highlight such sites - nothing has changed on TL side.
c) It's always best practice to use a site specific password - this is easier with password managers. That way, losing one password does not put user at any risk.