| Page 1 of 1 |
LeoNatan
☢ NFOHump Despot ☢
Posts: 73196
Location: Ramat Gan, Israel ๐ฎ๐ฑ
|
 Posted: Sun, 19th Jun 2011 18:29 Post subject: Allow access through HTTPS... |
|
 |
Work has blocked NFOHump as a "sex" category...  
So I use Opera Turbo as my "proxy" to visit, but its time is limited and I have to use Opera! 
Please enable HTTPS access. There are some very cheap certificated at GoDaddy, or even better create nforce CA and users can add its root certificate to their trusted RCAs, if they want. This is very easy to do with OpenSSL or xca for more GUI approach.
Please spare me the headaches of trying to look for proxies.
Thank you,
Leo
|
|
| Back to top |
|
|
|
|
| Posted: Sun, 19th Jun 2011 18:32 Post subject: |
|
|
|
|
|
| Back to top |
|
|
Neon
VIP Member
Posts: 18934
Location: Poland
|
| Posted: Sun, 19th Jun 2011 18:35 Post subject: |
|
|
Doubt he can install it in work.
|
|
| Back to top |
|
|
|
|
|
| Back to top |
|
|
LeoNatan
☢ NFOHump Despot ☢
Posts: 73196
Location: Ramat Gan, Israel ๐ฎ๐ฑ
|
| Posted: Sun, 19th Jun 2011 19:45 Post subject: |
|
|
No. I have VPNs and they don't work.
|
|
| Back to top |
|
|
LeoNatan
☢ NFOHump Despot ☢
Posts: 73196
Location: Ramat Gan, Israel ๐ฎ๐ฑ
|
| Posted: Sun, 19th Jun 2011 19:46 Post subject: |
|
|
I doubt their Extended Validation Certificate is free (the green bar).
BTW,
 Spoiler: | What a bunch of poo.
"Full Secure Sockets Layer functionality issued in minutes and good for 90 days."
As if their stupid certificates are what is enabling the SSL functionality. |
|
|
| Back to top |
|
|
Werelds
Special Little Man
Posts: 15098
Location: 0100111001001100
|
|
| Back to top |
|
|
LeoNatan
☢ NFOHump Despot ☢
Posts: 73196
Location: Ramat Gan, Israel ๐ฎ๐ฑ
|
| Posted: Sun, 19th Jun 2011 20:17 Post subject: |
|
|
I don't trust you with the RCA!  You still don't have access to the VIP pr0n FTP and I know you are on the hunt for user credentials......
|
|
| Back to top |
|
|
Werelds
Special Little Man
Posts: 15098
Location: 0100111001001100
|
| Posted: Sun, 19th Jun 2011 20:30 Post subject: |
|
|
I will soonโข, I've got LulzSec going for it 
|
|
| Back to top |
|
|
|
|
| Posted: Sun, 19th Jun 2011 22:54 Post subject: |
|
|
|
|
|
| Back to top |
|
|
LeoNatan
☢ NFOHump Despot ☢
Posts: 73196
Location: Ramat Gan, Israel ๐ฎ๐ฑ
|
| Posted: Sun, 19th Jun 2011 22:56 Post subject: |
|
|
You can always add the root certificate, and it will be recognized throughout the operating system (beside Firefox ). I don't see anything bad in this, just save money for the admins for certificates. Most people will use the regular port 80 clear version so it doesn't matter so much.
|
|
| Back to top |
|
|
LeoNatan
☢ NFOHump Despot ☢
Posts: 73196
Location: Ramat Gan, Israel ๐ฎ๐ฑ
|
| Posted: Sun, 19th Jun 2011 23:09 Post subject: |
|
|
|
|
|
| Back to top |
|
|
Werelds
Special Little Man
Posts: 15098
Location: 0100111001001100
|
|
| Back to top |
|
|
LeoNatan
☢ NFOHump Despot ☢
Posts: 73196
Location: Ramat Gan, Israel ๐ฎ๐ฑ
|
| Posted: Sun, 19th Jun 2011 23:24 Post subject: |
|
|
You still can in FF, but Mozilla being Mozilla, they have their own store , instead of using the native OSes' certificate stores. That's stupid in my opinion.
|
|
| Back to top |
|
|
Werelds
Special Little Man
Posts: 15098
Location: 0100111001001100
|
| Posted: Sun, 19th Jun 2011 23:31 Post subject: |
|
|
Yes it is. Still, just add the mimetype, provide a link to the public key and FF users can still accept it so 
Been a while since I last did it myself though, we've been using Digicert mostly, just have the clients pay extra. Considered going through the WebTrust process ourselves, but it's such a pain 
|
|
| Back to top |
|
|
LeoNatan
☢ NFOHump Despot ☢
Posts: 73196
Location: Ramat Gan, Israel ๐ฎ๐ฑ
|
| Posted: Sun, 19th Jun 2011 23:40 Post subject: |
|
|
The entire CAs and certification process is ridiculous. especially with the larger CAs, such as VeriSign. They charge insane amounts of cash for seemingly nothing. Sure, verification takes manpower and time, and should be charged for. But are you fucking kidding me? For the simpler certificates, only proof of domain ownership is needed and perhaps a scan of your ID card. Yes, that is obviously work 1000$ for a 2 year certificate for one domain or sub-domain name. And the wildcard certificates are even more hilariously priced (instead of "www.", the admin has to type "*."  ). Or how some charge more for larger keys, like they need to seat or something to generate the keys and sign.
|
|
| Back to top |
|
|
garus
VIP Member
Posts: 34200
|
| Posted: Sun, 19th Jun 2011 23:45 Post subject: |
|
|
snip
Last edited by garus on Tue, 27th Aug 2024 21:57; edited 1 time in total
|
|
| Back to top |
|
|
Werelds
Special Little Man
Posts: 15098
Location: 0100111001001100
|
| Posted: Mon, 20th Jun 2011 00:17 Post subject: |
|
|
The certificates are easy. A certificate is signed by a root authority though. Ever noticed the green address bar on sites like paypal? That's because those are signed by an authority that is "trusted" by browser manufacturers (amongst others). Now, I can give you hundreds of certificates, signed by me as their authority. Result? Popup whenever they are used, asking to allow it. That popup doesn't show for the trusted authorities. A trusted certificate still doesn't guarantee that a site is completely legit though.
That is in a nutshell why the whole business is so stupid.
|
|
| Back to top |
|
|
|
|
| Posted: Mon, 20th Jun 2011 00:30 Post subject: |
|
|
you browse nforce enough, you should focus on work at work and not your post count
your boss,
dazz
cockcockcockcockcockcockcockcockcockcockcockcock
|
|
| Back to top |
|
|
Werelds
Special Little Man
Posts: 15098
Location: 0100111001001100
|
| Posted: Mon, 20th Jun 2011 01:33 Post subject: |
|
|
You trying to tell us something with that sig there dazz?
|
|
| Back to top |
|
|
[mrt]
[Admin] Code Monkey
Posts: 1342
|
|
| Back to top |
|
|
LeoNatan
☢ NFOHump Despot ☢
Posts: 73196
Location: Ramat Gan, Israel ๐ฎ๐ฑ
|
| Posted: Tue, 21st Jun 2011 05:32 Post subject: |
|
|
Can you share the NFOhump Ring certificate? |
|
| Back to top |
|
|
|
|
| Posted: Tue, 21st Jun 2011 12:39 Post subject: |
|
|
So I can log on from work now and them company can't log that stuff?
|
|
| Back to top |
|
|
LeoNatan
☢ NFOHump Despot ☢
Posts: 73196
Location: Ramat Gan, Israel ๐ฎ๐ฑ
|
| Posted: Tue, 21st Jun 2011 19:11 Post subject: |
|
|
| PumpAction wrote: | | So I can log on from work now and them company can't log that stuff? |
Unless your company has an SSL inspection system (like one from Check Point  ) and pushes the root CA down with the GPO. Always check the certification path to make sure.
Here is one good reason to have the certificate stores separate from the OS ala Firefox. |
|
| Back to top |
|
|
|
|
| Posted: Tue, 21st Jun 2011 21:15 Post subject: |
|
|
| Dazz99 wrote: | you browse nforce enough, you should focus on work at work and not your post count
your boss,
dazz |
1 and 2 are still amazing. |
|
| Back to top |
|
|
| Page 1 of 1 |
All times are GMT + 1 Hour |
