FICS Teamleague


Teamleague Forum

Logins to teamleague siteT67Index ->

posted at 2017-04-23 10:09 by mindlin

I notice with the new firefox that it tells you the login to teamleague site is 'unsecure'. I guess it's always been like that? Anyone care to comment? Thanks.

posted at 2017-04-23 10:31 by kurumim

I noticed it too, Mindlin (on both Firefox and Chrome), but to be honest I don't remember seeing any warning prior to the domain issue that kept the site down for a week. Does it have anything to do with that?

posted at 2017-04-23 22:21 by smallblackcat

Unsecure just means it's not an https site. This has nothing to do with the domain expiring.

posted at 2017-04-23 23:27 by kurumim

My bad then — I really didn't remember the warning. Thanks for the clarification.

posted at 2017-04-24 04:22 by nebulus

Perhaps one should ask the host if they can set up a Let's Encrypt certificate?

posted at 2017-04-24 18:05 by smallblackcat

It's certainly a reasonable thought. However there really isn't any privileged information being shared on this website (i.e. no personal or financial details), so we have not prioritised this.

posted at 2017-04-24 18:44 by mindlin

I don't agree completely. Although no transaction is taking place, you have to login with a password and this in itself can be important.

posted at 2017-04-24 21:21 by smallblackcat

True, though I regarding TL passwords I would advise people to use something case-specific in any case. Unlike with many websites requiring passwords, the process for re-setting your password (if you forget it) is fairly trivial with TL.

posted at 2017-07-03 07:32 by KayVee

My 2c (albeit 2 months late).

a) Certificates expire. Adding an additional maintenance just makes it error prone.
b) Firefox and other browsers made recent changes to highlight such sites - nothing has changed on TL side.
c) It's always best practice to use a site specific password - this is easier with password managers. That way, losing one password does not put user at any risk.