Chat is a perfect example of something that would break unless it also moved to SSL, because of how browsers work.
Websockets will force that the same method be used (so if you use HTTPS, the socket has to be secured) otherwise it will be refused. It's not a simple "enable it on the site" because there are parts that may not work correctly. That's why I said it's not simple. There's more than just a flag that's changed.
I believe we have the certificate already somewhere, but it's not a simple change to do.
Status: Closed
Opened by doubledogdare610
- Finished
[Security Related] Request that planetminecraft.com get a HTTPS SSL security certificate..
It is highly critical for the saftey of PMC users.. I'd ask that administration implements one.
Here is a small list of well known and trusted Certificate Authorities in which a certificate can be obtained:
1. VeriSign (Lol, just found out that they no longer give out certificates without the purchase of other services.)
2. DigiCert
3. Symantec
4. GoDaddy
5. Comodo CA
Thank you for taking the time to read this ticket!
~doubledogdare610
EDIT: I have noticed that when I am using https://, I am not able to post replies to comments.. Looks like there is an even bigger problem..