Solved SSL Padlock on r4p3.net

Amin3Nator · Jun 4, 2019

hi I think there is a problem with ur SSL Certification on the Home page of the forum

ewenjo · Jun 4, 2019

It's because a recent profile post includes an unencrypted HTTP link which is shown on the front page. So the website is not "fully" encrypted because of this one file.

null3d · Jun 5, 2019

I would recommend a proxy for all http links (PHP proxy)

bindik · Jun 5, 2019

null3d said:
I would recommend a proxy for all http links (PHP proxy)

Public proxy is suicide

Alligatoras · Jun 5, 2019

Changed the link to contain "https". The issue has been solved.
Unfortunatetly, we can't do many things to prevent that, only change the links manually.

null3d · Jun 7, 2019

Alligatoras said:
Changed the link to contain "https". The issue has been solved.
Unfortunatetly, we can't do many things to prevent that, only change the links manually.

Not sure what about my suggestion would be wrong. Just use a PHP proxy instead:

https://imgur.com/something

That would solve all these problems with ease.

gajdi · Jun 25, 2019

Or you could set up an event listener on the client-side to check the post when the user submits to replace every occurrence of http:// to https://
The same can be done and necessary on the backend as well.
And you can always educate the users by informing them to use the proper protocol whenever they try to post http.
Although, some broken links will surely be present when someone tries to share some shitty old site.

bindik · Jun 25, 2019

gajdi said:
Or you could set up an event listener on the client-side to check the post when the user submits to replace every occurrence of http:// to https://
The same can be done and necessary on the backend as well.
And you can always educate the users by informing them to use the proper protocol whenever they try to post http.
Although, some broken links will surely be present when someone tries to share some shitty old site.

What if the service doesnt have SSL certificate at that endpoint? Browser would just refuse the connection

Asphyxia · Jun 25, 2019

bindik said:
Browser would just refuse the connection

In the past, we only accepted imgur links and forced them to https. That worked quite well but the downside is everyone has to know to upload everything to Imgur unless we scraped image links, placed them to Imgur, then replaced image urls.

tagKnife · Jun 28, 2019

Just add

Code:

Content-Security-Policy: upgrade-insecure-requests; default-src https:

to the servers headers.

Amin3Nator · Jul 11, 2019

tagKnife said:
Just add

Code:

Content-Security-Policy: upgrade-insecure-requests; default-src https:

to the servers headers.

Asphyxia

CAN U close this thread problem is fixed but peoples replying

Solved SSL Padlock on r4p3.net

Amin3Nator

Active Member

ewenjo

null3d

Member

bindik

Alligatoras

null3d

Member

gajdi

New Member

bindik

Asphyxia

Owner

tagKnife

Well-Known Member

Amin3Nator

Active Member