Club Touareg Forums - Reply to Topic
Thread: Site not secure! Reply to Thread
Title:
Message:
Post Icons
You may choose an icon for your message from the following list:
 

Register Now



In order to be able to post messages on the Club Touareg Forums forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.

User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.

Password:


Confirm Password:
Email Address
Please enter a valid email address for yourself.

Email Address:
OR

Log-in










  Additional Options
Miscellaneous Options

  Topic Review (Newest First)
04-11-2017 01:42 PM
DieselGator good point, ashamed I did not have 3rd party cookies off, grr.

that got me down to double digits, yeah! only 25 cookies, at least so far..

I always delete all cookies after closing browser option, sometimes I even resort to turning them off entirely..
04-11-2017 12:57 PM
Stabone33
Quote:
Originally Posted by DieselGator View Post
I do like the site, and frequent it often, as there is not much else out there that compares for Touareg owners, and yes it's not secure:
-Doesn't use Https.
-Cookies are off the charts - 240-500+ cookies set every refresh, jeez.
-frequent lags, due to cookies?
That's got to be 3rd-party cookies...disable those in your browser settings. That's just ridiculous.
04-11-2017 10:14 AM
DieselGator I do like the site, and frequent it often, as there is not much else out there that compares for Touareg owners, and yes it's not secure:
-Doesn't use Https.
-Cookies are off the charts - 240-500+ cookies set every refresh, jeez.
-frequent lags, due to cookies?
04-11-2017 07:57 AM
Tech Admin You guys are correct; so many people use the same passwords across many sites and this is how their data gets so easily compromised. We always strongly recommend that members use a completely different password than what they have on their other accounts, but we have no way to police this and make sure that they do.

~Sheena
04-10-2017 12:29 PM
Njord So complicated. Whereas in reality it is an unscrupulous bank employee, who disclose your personal data to bilk third party. Some banks have low staff retention records. And then your card balance is emptied somewhere across the ocean.
04-10-2017 11:48 AM
Stabone33
Quote:
Originally Posted by Tech Admin View Post
The gap in security your browser is pointing out is common on most sites, but Google has decided to start highlighting it now. It's telling you that the site is vulnerable to a MIM attack (or Man in the Middle), where someone intercepts what you are typing on the site. Since everything you type here is view-able to all, this has never been a thing it made sense to protect against. As long as you aren't typing your password into a thread in plain text, or your bank info, this doesn't affect you.

All that said, we are going to be upgrade all our network over the coming months to HTTPS to make our pages secure.

- JB
The danger is not so much in someone hacking your account to impersonate you (this could potentially be embarassing, but otherwise generally harmless here), but rather, as you suggest, in intercepting you as you type in your password as you log in. Many people may re-use passwords on other sites that could have far worse implications such as banks or places like Amazon. Hacking a site's password stores is also a problem, but that's usually harder for several reasons. People are generally more aware of threats as they relate to their money and personal information that could be used to get at their money ("this email seems phishy...better not click on that link/attachment..."), but not many people think about sites like these where the consequences are lower, and they don't think about what would happen through "information aggregation" and password re-use.

Despite the fact that passwords are so Y2K, I have two kinds of passwords (way more than two *passwords* however) -

1. the "I don't care if this gets hacked because there's nothing important on this site, but I'm still not going to make it easy on you" strength, and
2. the "you're going to have to use tin snips to cut off my fingers because you'll never guess it or otherwise social engineer it as long as the site and connection are secure" strength.

ClubTouareg and anything that doesn't store personal data or financial info gets the former. I'm also pretty careful never to use my full name publicly (and in some cases real name) on sites like this. I also have email accounts just for these kinds of sites, and yes, I know for a fact that several such sites have had data leaks, because these email addresses do get spammed and phished, and literally the only place I've used them is to register for an account. Banks and suchlike get the stronger passwords, and between them they're never the same password at the same time. More characters, more diversity in characters, and enable two-factor or biometric authentication where available.

The key is to ensure that no one can use information gathered by hacking one site be used to get into another site, and through aggregation get enough data about you to steal your identity such that they could rip you off.

If the Illuminati are after your brain waves, however, there's very little you can do to prevent them from getting in - just ensure you have a couple layers of tinfoil and mylar sewn into your hat and clothes, and preferably embedded in between layers of drywall, because who wants to wear a mylar poncho in the house anyway?
04-10-2017 09:43 AM
alfissimo Cool thanks
04-10-2017 08:58 AM
Tech Admin The gap in security your browser is pointing out is common on most sites, but Google has decided to start highlighting it now. It's telling you that the site is vulnerable to a MIM attack (or Man in the Middle), where someone intercepts what you are typing on the site. Since everything you type here is view-able to all, this has never been a thing it made sense to protect against. As long as you aren't typing your password into a thread in plain text, or your bank info, this doesn't affect you.

All that said, we are going to be upgrade all our network over the coming months to HTTPS to make our pages secure.

- JB
04-09-2017 08:43 AM
alfissimo Yeah, thanks. I tried that but it does not work for this site. yet...

States not encrypted site. It's the only site I have had this issue with. The other autoguide site: http://www.alfabb.com/ also is insecure.
04-09-2017 08:40 AM
Xeno555 Because everyone (browser makers) are moving to HTTPS:// There might be a setting in your browser that is something like:

* Try to secure all traffic (disable)
This thread has more than 10 replies. Click here to review the whole thread.

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

 
For the best viewing experience please update your browser to Google Chrome
 

VW Touareg News Delivered to your Email!

Stay up-to-date with Touareg news in your inbox.

unsusbcribe at anytime with one click

Close [X]