[GreenKeys] Oh! It’s a present from microsoft
Curt Nixon
radio.ku8l at gmail.com
Wed Apr 24 13:45:22 EDT 2019
Here's the point...Unless you are involved with internet security and
see how the large hack hosts work, you are not aware of what is going on
24/7. If your site, any site is online, it is being continually pinged
and probed for vulnerabilities. The hackers are running bots that send
millions of probes a day. If a particular vulnerability is found,
especially easy on older OS's and those not current in patches/updates
and encryptions, an attack targeted specifically for the vulnerability
revealed can be done WITHOUT the web hosts' knowledge. ( our small site
gets queried thousands of time a day) The malware is designed to be
invisible and just transfers to a log-in user once connected. THis is
how most of the ransomware and other malware gets into a system.
Doesn't matter how "simple" your site is or how ethical your users are,
the probes are blind to all that.
So those that choose to ignore all of the security efforts, patches,
updates, etc, beware....
FWIW
Curt KU8L
On 04/24/19 9:23 AM, Bob kb8tq wrote:
> Hi
>
> The “chain of trust” on the certificate is the gotcha. If you log into
> a US military
> site, it’s “not secure”. It’s HTTPS, but the certificate path is not
> one that the
> commercial guys recognize,. The same thing gets you with most (if not
> all) of
> the “free” certificates.
>
> Pile on the next layer and it’s even more silly. People like Go Daddy
> issue
> certificates. For a first time buy, they are pretty cheap ( = buy the
> longest term
> you possibly can). For renewal … not so cheap. Every so often Google or
> Microsoft will go to war with Go Daddy and “un-trust” their chain. I
> haven’t seen
> it happen for years, but I have seen it.
>
> It’s all nonsense.
>
> Bob
>
>> On Apr 24, 2019, at 5:12 AM, Paul Birkel <pbirkel at gmail.com
>> <mailto:pbirkel at gmail.com>> wrote:
>>
>> Get one from: https://letsencrypt.org/ No strings attached :->!
>> See: https://letsencrypt.org/getting-started **
>> *From:*greenkeys-bounces at mailman.qth.net
>> <mailto:greenkeys-bounces at mailman.qth.net>
>> [mailto:greenkeys-bounces at mailman.qth.net] *On Behalf Of *Paul Heller
>> *Sent:* Wednesday, April 24, 2019 4:37 AM
>> *To:* Frank Carraro
>> *Cc:* greenkeys at mailman.qth.net <mailto:greenkeys at mailman.qth.net>
>> *Subject:* Re: [GreenKeys] Oh! It’s a present from microsoft
>> This is an interesting dilemma. The way things are now, any site that
>> is not HTTPS (encrypted HTTP) will show as not secure. This is a
>> recent change from Google (Chrome), Microsoft (Edge), etc. But to
>> become HTTPS the site needs to buy a certificate (maybe there are
>> free ones?). So that is extra cost to people like me who are only
>> trying to run a simple website.
>> Since RTTY.com <http://rtty.com/> is hosted by a generous benefactor,
>> I will see if HTTPS is possible.
>>
>> I’m glad it is working for you, Frank.
>>
>> Paul
>> W2TTY
>>
>> ITTY: HTTP://INTERNET-TTY.NET:8000/ITTY
>> <http://internet-tty.net:8000/ITTY>
>> AUTOSTART: HTTP://INTERNET-TTY.NET:8030/AUTOSTART
>> <http://internet-tty.net:8030/AUTOSTART>
>> EUROPE: HTTP://INTERNET-TTY.NET:8040/EUROPE
>> <http://internet-tty.net:8040/EUROPE>
>>
>>
>> On Apr 24, 2019, at 10:27 AM, Frank Carraro <kf9nz at sbcglobal.net
>> <mailto:kf9nz at sbcglobal.net>> wrote:
>>
>>> An upgrade did it. I am so relieved
>>> that Microsoft gave me such protection from all those terrible
>>> security breaches in rtty.com <http://rtty.com/>!!
>>> I finally was able to hear the signal even though it says “Not
>>> Secure. Rtty.com <http://rtty.com/>” in the site name.
>>>
>>> Sorry to bother
>>>
>>> Sent from my iPhone
>>> ______________________________________________________________
>>> GreenKeys mailing list
>>> Home: http://mailman.qth.net/mailman/listinfo/greenkeys
>>> Help: http://mailman.qth.net/mmfaq.htm
>>> Post: mailto:GreenKeys at mailman.qth.net
>>>
>>> 2002-to-present greenkeys archive:
>>> http://mailman.qth.net/pipermail/greenkeys/
>>> 1998-to-2001 greenkeys archive:
>>> http://mailman.qth.net/archive/greenkeys/greenkeys.html
>>> Randy Guttery's 2001-to-2009 GreenKeys Search Tool:
>>> http://comcents.com/tty/greenkeyssearch.html
>>>
>>> This list hosted by: http://www.qsl.net <http://www.qsl.net/>
>>> Please help support this email list: http://www.qsl.net/donate.html
>>> Message delivered to paul0926 at comcast.net <mailto:paul0926 at comcast.net>
>> ______________________________________________________________
>> GreenKeys mailing list
>> Home: http://mailman.qth.net/mailman/listinfo/greenkeys
>> Help: http://mailman.qth.net/mmfaq.htm
>> Post: mailto:GreenKeys at mailman.qth.net
>>
>> 2002-to-present greenkeys archive:
>> http://mailman.qth.net/pipermail/greenkeys/
>> 1998-to-2001 greenkeys archive:
>> http://mailman.qth.net/archive/greenkeys/greenkeys.html
>> Randy Guttery's 2001-to-2009 GreenKeys Search Tool:
>> http://comcents.com/tty/greenkeyssearch.html
>>
>> This list hosted by: http://www.qsl.net
>> Please help support this email list: http://www.qsl.net/donate.html
>> Message delivered to kb8tq at n1k.org <mailto:kb8tq at n1k.org>
>
>
> ______________________________________________________________
> GreenKeys mailing list
> Home: http://mailman.qth.net/mailman/listinfo/greenkeys
> Help: http://mailman.qth.net/mmfaq.htm
> Post: mailto:GreenKeys at mailman.qth.net
>
> 2002-to-present greenkeys archive: http://mailman.qth.net/pipermail/greenkeys/
> 1998-to-2001 greenkeys archive: http://mailman.qth.net/archive/greenkeys/greenkeys.html
> Randy Guttery's 2001-to-2009 GreenKeys Search Tool: http://comcents.com/tty/greenkeyssearch.html
>
> This list hosted by: http://www.qsl.net
> Please help support this email list: http://www.qsl.net/donate.html
> Message delivered to radio.ku8l at gmail.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.qth.net/pipermail/greenkeys/attachments/20190424/ed3ef867/attachment.html>
More information about the GreenKeys
mailing list