- This topic has 2 replies, 1 voice, and was last updated 4 years, 2 months ago by .
Any site which starts with http:// – data is transferred without encryption.
Any site with https:// – data is transferred encrypted. The “s” in https:// as you guess stands for “secure”.
There is a cost to it. You have to get issued a certificate from a CA (Certificate Authority) for the site which comes at an annual cost because you have to renew that certificate every year.
An https:// site is required if the site is doing eCommerce or or there is confidential information being exchanged like for example medical data, etc.
Since we are posting everything which is open to the public, I think http:// is good enough for a forum like this.
Be assured that your passwords are hidden to the site administrators too – WordPress code does not show the user password to administrators. Administrators can only change or reset the passwords.
The “Not Secure” part you see on the site URL of your browser for any http:// site is in the network part. If you are using Wifi and someone is snooping on the wireless packets or if your ISP or transit ISPs are snooping or capturing data getting transported when you are interacting with an http:// site, then the data/payload is not hidden from them. So on any http:// site, use different passwords than those you would use for your bank, credit cards, email, DMV, etc., to prevent identity theft.
Just some public service info.
" All tyrannies rule through fraud and force, but once the fraud is exposed they must rely exclusively on force. " — George Orwell.
- You must be logged in to reply to this topic.