*ads are disabled when logged in*
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
  2. We completed the upgrade of the TUGBBS forums recently and are still working on issues/customizations/changes etc. Please post in the thread in the ABOUT TUGBBS section with your feedback. Note if you are unable to log in or access the forums please email us at tug@tug2.net!
    Dismiss Notice
  3. With the upgrade to the new forum, tapatalk is not functioning properly and we have had little to no support from them in fixing the problem. That said, the new forum is fully configured to support mobile devices so if you are missing being able to visit TUG on your phone try disabling tapatalk and just using your phone/tablet browser to see the new look!
    Dismiss Notice
  4. Sign up to get the TUG Newsletter for free! Join tens of thousands of other owners who get this every week! Latest resort reviews and the most important topics discussed by owners during the week!
    Dismiss Notice
  5. Follow the TUG Member Banner as it travels the world on vacation with Timeshare owners! Also sign up to get the banner sent to you so you can submit a photo of your vacation with the banner to share with TUG! Banner Thread
    Dismiss Notice

BBS Security (HTTPS)

Discussion in 'About TUG BBS' started by TravelSFO, Mar 28, 2012.

  1. TravelSFO

    TravelSFO TUG Member

    Joined:
    Jun 11, 2005
    Messages:
    422
    Likes Received:
    0
    Trophy Points:
    16
    Would it be possible the BBS admin to implement https for the login page? Many TUGgers will be logging in from unsecured networks and, as it stands, are sending their credentials in the clear.
     
  2. Kagehitokiri2

    Kagehitokiri2 Guest

    Joined:
    Feb 24, 2010
    Messages:
    1,009
    Likes Received:
    0
    Trophy Points:
    0
    which is why you should use passwords you dont care about for things like forums
     
  3. TUGBrian

    TUGBrian Administrator

    Joined:
    Mar 24, 2006
    Messages:
    13,835
    Likes Received:
    53
    Trophy Points:
    48
    Location:
    Florida
    agreed, we certainly suggest not using your personal name/email as your username, and definately dont use the same password you use to secure anything important.
     
  4. Numismatist

    Numismatist TUG Member

    Joined:
    Apr 10, 2009
    Messages:
    778
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Coast of Maine
    TUG is important!:clap: :cheer:
     
  5. TUGBrian

    TUGBrian Administrator

    Joined:
    Mar 24, 2006
    Messages:
    13,835
    Likes Received:
    53
    Trophy Points:
    48
    Location:
    Florida
    haha...this is true...but the information someone woudl gain by knowing your TUGBBS login and password are likely a bit less important =D
     
  6. TravelSFO

    TravelSFO TUG Member

    Joined:
    Jun 11, 2005
    Messages:
    422
    Likes Received:
    0
    Trophy Points:
    16
    I hope that you make this clear to all TUG members.

    Not everyone cares (or know that they should care) about whether they are sending their credentials over non-HTTPS. TUG members are probably at greater risk because they often used an unsecured timeshare/hotel wi-fi connection while traveling.

    I'd bet money that there are plenty of folks on TUG who use the exact same username/password combo for an email account or something worse, like a bank account.

    Just asking for your assistance in helping to protect TUG users if only to caution.
     
  7. Kagehitokiri2

    Kagehitokiri2 Guest

    Joined:
    Feb 24, 2010
    Messages:
    1,009
    Likes Received:
    0
    Trophy Points:
    0
    TravelSFO, how familiar are you with online security?

    secure has a cost.

    no forums are secure. i dont think any social media is secure.

    there are commercial sites that have unsecure signups/logins and even major corporate sites where they are secure, but do not have a dedicated secure login page.
     
    Last edited: Mar 29, 2012
  8. TravelSFO

    TravelSFO TUG Member

    Joined:
    Jun 11, 2005
    Messages:
    422
    Likes Received:
    0
    Trophy Points:
    16
    There are different levels of secure. I'm not suggesting you secure the entire site. I'm just asking for basic security for the user's credentials not being sent in the clear. That means just https for the login page.
     
  9. Makai Guy

    Makai Guy Administrator

    Joined:
    Jun 3, 2004
    Messages:
    3,412
    Likes Received:
    23
    Trophy Points:
    38
    Location:
    Aiken, SC, USA
    Resorts Owned:
    Spicebush (Hilton Head Island)
    Every bbs page is a login page. All are directly accessible and contain the login fields in the upper right if you're not logged in.
     
  10. Kagehitokiri2

    Kagehitokiri2 Guest

    Joined:
    Feb 24, 2010
    Messages:
    1,009
    Likes Received:
    0
    Trophy Points:
    0
    name one forum that has secure login.

    facebook (nothing is bigger) is NOT secure.
     
    Last edited: Mar 29, 2012
  11. hypnotiq

    hypnotiq TUG Member

    Joined:
    Feb 11, 2011
    Messages:
    1,285
    Likes Received:
    0
    Trophy Points:
    36
    Location:
    Redmond, WA
    It is if you use https://www.facebook.com :)
     
  12. Kagehitokiri2

    Kagehitokiri2 Guest

    Joined:
    Feb 24, 2010
    Messages:
    1,009
    Likes Received:
    0
    Trophy Points:
    0
    ah, ok, now the articles mentioning secure login (with rest being unsecure) make sense
     

Share This Page