Jump to content

Secocondlife.com


iceing Braveheart
 Share

You are about to reply to a thread that has been inactive for 1613 days.

Please take a moment to consider if this thread is worth bumping.

Recommended Posts

1 hour ago, Love Zhaoying said:

Theory: OP is concerned because google said SL site is redirected.

Anyone who uses Google *anything* shouldn't be concerned with security whatsoever. That's like saying "How dare you to spill liquid on the freshly-polished deck of my boat!" as it sinks from holes in the hull.

  • Like 2
Link to comment
Share on other sites

i think i know what the OP is on about.

SL doesnt use LetsEncrypt yet and the urls we get using llRequestSecureURL dont have a valid SSL certificate yet. Yes i hate using a HTTP url to send data to a prim because that runs the risk of a middle man attack but its something we lsl developers gotta work with right now while LL still work on moving SL to the cloud.

LL does know about lets encrypt and they may use it after the move.
Least i hope they do since its free SSL certificate.

Edited by VenKellie
  • Thanks 1
Link to comment
Share on other sites

  • 1 month later...
  • 5 months later...
On 4/8/2019 at 12:01 PM, Alyona Su said:

Anyone who uses Google *anything* shouldn't be concerned with security whatsoever. That's like saying "How dare you to spill liquid on the freshly-polished deck of my boat!" as it sinks from holes in the hull.

you could not of possibly read or looked at the links

they were in plane English and not cryptographic messages 

I am kind of surprised no one has bothered to fix the web site yet

great at taking money but when it comes to maintaining fixing updating it is all like wow wow slow your rolls

https://en.wikipedia.org/wiki/Abandonware

Chrome store HTTPS Everywhere

https://chrome.google.com/webstore/detail/https-everywhere/gcbommkclmclpchllfjekcdonpmejbdp

Firefox store HTTPS Everywhere

https://addons.mozilla.org/en-US/firefox/addon/https-everywhere/

official web site

https://www.eff.org/

EFF Electronic Frontier Foundation and not Google

https://en.wikipedia.org/wiki/Electronic_Frontier_Foundation

HTTPS Everywhere official page

https://www.eff.org/https-everywhere

since you brought up Google i thought I would drop Google in here as well

Google blog, No More Mixed Messages About HTTPS Thursday, October 3, 2019

https://blog.chromium.org/2019/10/no-more-mixed-messages-about-https.html

secondlife.com disables HTTPS

free HTTPS certificates forever

https://certbot.eff.org/

https://en.wikipedia.org/wiki/HTTPS

  • Haha 1
Link to comment
Share on other sites

8 minutes ago, iceing Braveheart said:

you could not of possibly read or looked at the links

You make presumptions where you shouldn't. They were not ignored; they were disregarded.

Official anything is official only by title. Whether others choose to follow "official standards" or not is not compelled in the case of the Internet. So you being surprised, etc. is not a surprise. If it were so easy, then make application to the hiring department and offer to do it yourself. Otherwise, file a Jira entry or make a complaint to the "official" parties.

You are relying on others for your own security when you should take responsibility for your self. LastPass.com and DuckDuckGo.com and Brave.com are starters. You're welcome.

  • Like 2
Link to comment
Share on other sites

  • 2 weeks later...
On 11/28/2019 at 12:07 PM, Alyona Su said:

You are relying on others for your own security when you should take responsibility for your self. LastPass.com and DuckDuckGo.com and Brave.com are starters. You're welcome.

https://zonemaster.net/result/58a4a3c14269b391

you seem really off topic changing a web browser to brave etc will not fix or update secondlife.com

duckduckgo is only a search engine off topic has no relevance to secondlife.com

and no thx for lastpass off topic again as well

this thread seems over the scope of what you are able to comprehend

  • Haha 1
Link to comment
Share on other sites

54 minutes ago, iceing Braveheart said:

https://zonemaster.net/result/58a4a3c14269b391

you seem really off topic changing a web browser to brave etc will not fix or update secondlife.com

duckduckgo is only a search engine off topic has no relevance to secondlife.com

and no thx for lastpass off topic again as well

this thread seems over the scope of what you are able to comprehend

Perhaps, though by that reckoning, forums in general seem to be beyond the scope of your comprehension. So we'll just have to agree to disagree.

  • Like 1
Link to comment
Share on other sites

  • 5 months later...
On 12/11/2019 at 6:13 PM, Alyona Su said:

Perhaps, though by that reckoning, forums in general seem to be beyond the scope of your comprehension. So we'll just have to agree to disagree.

 

On 4/8/2019 at 12:01 PM, Alyona Su said:

Anyone who uses Google *anything* shouldn't be concerned with security whatsoever. That's like saying "How dare you to spill liquid on the freshly-polished deck of my boat!" as it sinks from holes in the hull.

On 11/28/2019 at 12:07 PM, Alyona Su said:

You are relying on others for your own security when you should take responsibility for your self. LastPass.com and DuckDuckGo.com and Brave.com are starters. You're welcome.

brave is google as google funds the majority of chromium which brave is based on

https://en.wikipedia.org/wiki/Chromium_(web_browser)

https://en.wikipedia.org/wiki/Brave_(web_browser)

While i do not use brave i use chrome if your brave is updated to a build similar in theory you should have these settings, these are what i use if you wanna share and compare security i will share what i use

type chrome://flags/   into the url bar this may or may not work on brave

Negotiation with GCM cipher suites for SRTP in WebRTC : Enable
TLS 1.3 hardening for local anchors :Enable
TLS Post-Quantum Confidentiality : Enable
Prefetch request properties are updated to be privacy-preserving : Enable
Treat risky downloads over insecure connections as active mixed content : Enable
Happiness Tracking Surveys : Disable
Happiness Tracking Surveys Demo : Disable
Happiness Tracking Surveys migration : Disable
Happiness Tracking Surveys for Settings : Disable
Happiness Tracking Surveys for Privacy Settings : Disable
Choose ANGLE graphics backend : OpenGL
Native File System API : Disable
Strict-Origin-Isolation : Enable
SameSite by default cookies : Enable
Enable removing SameSite=None cookies : Enable
Cookies without SameSite must be secure : Enable
Use hybrid spell checking on Windows : Enable
Secure DNS lookups : Enable
Show security warnings for sites using legacy TLS versions : Enable
Heavy Ad Intervention : Enable
Freeze User-Agent request header : Enable
Enforce deprecation of legacy TLS versions : Enable
AppCache web API and browser backend : Disable
Translate sub frames : Enable

in your own words these are settings you will have to change yourself

Link to comment
Share on other sites

You are about to reply to a thread that has been inactive for 1613 days.

Please take a moment to consider if this thread is worth bumping.

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
 Share

×
×
  • Create New...