Timeshare Users Group Forums
TUG Links external to TUG BBS:    TUG Home| TUG Resort Databases| Marketplace | TUG Help | Advice | Join TUG  

Timeshare Users Group Bulletin Board
Go Back   Timeshare Users Group Forums > TUG > About TUG BBS
Log into the TUG BBS:

About TUG BBS The place to discuss this bulletin board, its features, etc. Discussion of all other aspects of TUG should be placed in About the Rest of TUG forum.

GLOBAL ANNOUNCEMENTS
TUG Turns 20 Years Old! Read More

Free Timeshare Exchanges on TUG! View current exchanges!

Free TUG Newsletter! Sign up today!

TUG Banner Travels the World! Follow the Banner!

 
Forum Jump


Reply « Previous Thread | Next Thread »
 
Thread Tools Search this Thread Display Modes
Old March 28, 2012, 10:44 AM   #1
TravelSFO
TUG Member
 
BBS Reg. Date: Jun 11, 05
Posts: 420
Exclamation BBS Security (HTTPS)

Would it be possible the BBS admin to implement https for the login page? Many TUGgers will be logging in from unsecured networks and, as it stands, are sending their credentials in the clear.
TravelSFO is offline   Reply With Quote
Old March 28, 2012, 02:39 PM   #2
Kagehitokiri2
Guest
 
BBS Reg. Date: Feb 24, 10
Posts: 1,006
Quote:
Originally Posted by TravelSFO View Post
Would it be possible the BBS admin to implement https for the login page? Many TUGgers will be logging in from unsecured networks and, as it stands, are sending their credentials in the clear.
which is why you should use passwords you dont care about for things like forums
Kagehitokiri2 is offline   Reply With Quote
Old March 28, 2012, 02:59 PM   #3
TUGBrian
Administrator
 
TUGBrian's Avatar
TUG Lifetime Member
 
BBS Reg. Date: Mar 24, 06
Location: Florida
Posts: 9,634
agreed, we certainly suggest not using your personal name/email as your username, and definately dont use the same password you use to secure anything important.
TUGBrian is online now   Reply With Quote
Old March 28, 2012, 03:41 PM   #4
Numismatist
 
Numismatist's Avatar
TUG Member
 
BBS Reg. Date: Apr 10, 09
Location: Coast of Maine
Posts: 770

Resorts: MFC - Marriott Frenchman's Cove, St. Thomas, USVI
Quote:
Originally Posted by TUGBrian View Post
...and definately dont use the same password you use to secure anything important.
TUG is important!
__________________
MFC - Frenchman's Cove, St. Thomas, U. S. Virgin Islands
Marriott Rewards Member
Luxury watch adviser
Rare coin appraiser
Alpine skier
Numismatist is offline   Reply With Quote
Old March 28, 2012, 03:45 PM   #5
TUGBrian
Administrator
 
TUGBrian's Avatar
TUG Lifetime Member
 
BBS Reg. Date: Mar 24, 06
Location: Florida
Posts: 9,634
haha...this is true...but the information someone woudl gain by knowing your TUGBBS login and password are likely a bit less important =D
TUGBrian is online now   Reply With Quote
Old March 28, 2012, 04:20 PM   #6
TravelSFO
TUG Member
 
BBS Reg. Date: Jun 11, 05
Posts: 420
I hope that you make this clear to all TUG members.

Quote:
Originally Posted by TUGBrian View Post
agreed, we certainly suggest not using your personal name/email as your username, and definately dont use the same password you use to secure anything important.
Not everyone cares (or know that they should care) about whether they are sending their credentials over non-HTTPS. TUG members are probably at greater risk because they often used an unsecured timeshare/hotel wi-fi connection while traveling.

I'd bet money that there are plenty of folks on TUG who use the exact same username/password combo for an email account or something worse, like a bank account.

Just asking for your assistance in helping to protect TUG users if only to caution.
TravelSFO is offline   Reply With Quote
Old March 28, 2012, 06:21 PM   #7
Kagehitokiri2
Guest
 
BBS Reg. Date: Feb 24, 10
Posts: 1,006
TravelSFO, how familiar are you with online security?

secure has a cost.

no forums are secure. i dont think any social media is secure.

there are commercial sites that have unsecure signups/logins and even major corporate sites where they are secure, but do not have a dedicated secure login page.

Last edited by Kagehitokiri2; March 29, 2012 at 12:07 AM.
Kagehitokiri2 is offline   Reply With Quote
Old March 28, 2012, 09:47 PM   #8
TravelSFO
TUG Member
 
BBS Reg. Date: Jun 11, 05
Posts: 420
Quote:
Originally Posted by Kagehitokiri2 View Post
TravelSFO, how much experience do you have with online passwords?

secure has a cost.

no forums are secure. i dont think any social media is secure.

there are commercial sites that have unsecure signups/logins and even major corporate sites where they are secure, but do not have a dedicated secure login page.
There are different levels of secure. I'm not suggesting you secure the entire site. I'm just asking for basic security for the user's credentials not being sent in the clear. That means just https for the login page.
TravelSFO is offline   Reply With Quote
Old March 28, 2012, 10:07 PM   #9
Makai Guy
Administrator
 
Makai Guy's Avatar
TUG Lifetime Member
 
BBS Reg. Date: Jun 3, 04
Location: Aiken, SC, USA
Posts: 3,084

Resorts: Makai Club & Makai Club Cottages (Princeville, HI), Spicebush (Hilton Head)
Quote:
Originally Posted by TravelSFO View Post
There are different levels of secure. I'm not suggesting you secure the entire site. I'm just asking for basic security for the user's credentials not being sent in the clear. That means just https for the login page.
Every bbs page is a login page. All are directly accessible and contain the login fields in the upper right if you're not logged in.
__________________
Doug Wilson, "The Makai Guy" - TUG BBS Administrator
My websites: North Shore Kauai and Yellowstone Photo Gallery
Makai Guy is offline   Reply With Quote
Old March 29, 2012, 12:03 AM   #10
Kagehitokiri2
Guest
 
BBS Reg. Date: Feb 24, 10
Posts: 1,006
Quote:
Originally Posted by TravelSFO View Post
There are different levels of secure. I'm not suggesting you secure the entire site. I'm just asking for basic security for the user's credentials not being sent in the clear. That means just https for the login page.
name one forum that has secure login.

facebook (nothing is bigger) is NOT secure.

Last edited by Kagehitokiri2; March 29, 2012 at 12:07 AM.
Kagehitokiri2 is offline   Reply With Quote
Old March 29, 2012, 12:42 AM   #11
hypnotiq
 
hypnotiq's Avatar
TUG Member
 
BBS Reg. Date: Feb 11, 11
Location: Redmond, WA
Posts: 1,162

Resorts: EY 2BD PBSB, DVC @ VGC, EY 2BD SBP Gold, 2 EOY 1BD SDO Plat, EY SDO Gold+, VVP (RCI Pts)
Quote:
Originally Posted by Kagehitokiri2 View Post
name one forum that has secure login.

facebook (nothing is bigger) is NOT secure.
It is if you use https://www.facebook.com
hypnotiq is offline   Reply With Quote
Old March 29, 2012, 01:45 AM   #12
Kagehitokiri2
Guest
 
BBS Reg. Date: Feb 24, 10
Posts: 1,006
Quote:
Originally Posted by hypnotiq View Post
It is if you use https://www.facebook.com
ah, ok, now the articles mentioning secure login (with rest being unsecure) make sense
Kagehitokiri2 is offline   Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -5. The time now is 12:21 AM.


Powered by: vBulletin Version 3.8.7
BBS Software Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Editorial Content Copyright ©1993 - 2014, Timeshare Users Group
Customized for TUG by Makai Guy.