I put forward a suggestion for a secure login system. I know the site doesn't hold any major info, but there is a brothers section etc. and I'm sure many users on here access the site from internet cafes, work, and other such insecure environments.
Rashad, you're always looking for ways to break the si... er... I mean "embrace new technology". This could be one step into the future ;)

before we implement a secure HTTP...i will need all the active users bank account details...its a research im doing....you know...i put things into database and see the correlation and stuff....

Sounds interesting. How would it exactly work though?

Normally only the login page has https rather than http. The user would see no real difference. However, I just checked and vbulletin don't support this so the whole site would have to be https. I guess forget it since it doesn't seem to be a common thing on vbulletin forums :(

Hey there! Looks like you're enjoying the discussion, but you're not signed up for an account.

When you create an account, you can participate in the discussions and share your thoughts. You also get notifications, here and via email, whenever new posts are made. And you can like posts and make new friends.
Sign Up

That's not gonna happen. It is worthless to to have a secure login page on this forum, even Facebook doesn't use secure login even though you share your personal information there. So forget it! :)

Yes,although a suggestion that could be inmplented into the future:).

Facebook does have a secure login page if you type https. Calling something worthless because you thought Facebook didn't have it isn't worth responding to :p

What's the difference between http and https? :><:

When you are on public networks your username and password is sent via plain text, so it's possible for anyone on that network to read. If it's https it's encrypted/secure.

How about if you use KeyScrambler? Doesn't that jumble all the letters up anyway?

That's only to protect against keyloggers which are locally on the computer. I am talking about the connection from your pc to islamicboard.com.

Right...ok.
Sorry, i'm not very computer-literate :><:

Well you are a little more now, but don't worry since nobody seems to think the idea is that important :D

As you said brother Dagless, there are some sections which need more protection, I rather see it the other way, I believe there is nothing in brother's section for us to feel the need to conceal it if any admin's or user's account is compromised.

Moreover, it requires more $$$ for this, an it's not worth it.

Thanks bro, that's pretty much the kind of answer I was looking for. I agree, there is nothing to hide (pm or forum). I suppose the reason for restriction is more to stop the trolling which goes on out here than to hide any information.
Not too much $$$. Certs can be bought quite reasonably these days, ~£10.

I don't know what you mean by this.

:sl:

In other terms, the forum is secure enough.

:wa:

That doesn't explain "SSL uses public IP verification".

Still doesn't make sense.

That is a cop out since it is something you wrote.

It implies that the first part of the sentence is a strong enough argument to close all discussion on the matter.

However, the first part of the sentence does not really make sense. All websites on the internet would be public ip's. It's the same as saying "ssl is used on the internet; I don't think anymore needs to be discussed on the matter". It's not an argument either way... certainly not one to end debate.

Asking someone to clarify what they meant is not an argument. You made a statement based upon which you concluded no further discussion was necessary. The statement was not clear in any way. I don't think google will know what you meant any more than you seem to.

"debate" was in regard to the thread. The only thing I asked of you was clarification of your comment. You know this already but see it as another excuse not to answer the question. This can be seen from your numerous posts of avoidance. If you're not going to reply with an answer to the question please don't derail the thread. Just keep in mind for next time to only respond with things you can justify/explain.

edit: lol you left negative rep for this post? really?

Firstly, thank you for finally explaining. I don't see it as significant (or as significant as the initial post suggested) since a public site would be impossible to verify using private ip address anyway, therefore it's moot... but I'm glad this matter came to an end.