Steve, you're misrepresenting what was discussed.<br><br>You acted without authority by prematurely making the switch in spite what was said by our elected President.<div><br></div><div>I'm not against us switching to SSL, it makes a lot of sense to do so for *authenticated* actions on our website. But *not* with the minority SSL root certificate authority you installed.</div>
<div><br></div><div>And it still doesn't make sense to *force* SSL for all traffic, when 99% of our traffic is by anonymous users for *public* content.</div><div><br></div>My phone doesn't show a certificate warning - it presents an error message when I try to connect on my Nokia E52-2 with current (v91.003, 03-Apr-2012) firmware. I can browse other SSL sites fine, just not Melbourne Wireless'. Yes, this is probably a bug but it's non-trivial - half the time that I'm using our website is when I'm on a roof and the phone is the device with a browser at hand. Nokia are currently the 2nd biggest seller of mobile phones, so I don't believe that I'd be the only person affected if you persist with the current SSL root CA.<div>
<br></div><div><div>Regards,</div><div>Tyson.</div><div><br><div><br><div class="gmail_quote">On 20 July 2012 20:10, Steven Haigh <span dir="ltr"><<a href="mailto:netwiz@crc.id.au" target="_blank">netwiz@crc.id.au</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi all,<br>
<br>
We're having a bit of indecision at the moment, so I decided to get the input of the majority on the list on the matter.<br>
<br>
I've configured up <a href="https://www.melbournewireless.org.au" target="_blank">https://www.melbournewireless.<u></u>org.au</a> to work to get the entire web site over an SSL encrypted link. This helps protect your privacy while operating over unencrypted or insecure links. It also helps keep your details while logging into the site safe.<br>
<br>
There have been differing opinions between the dev teams and committee regarding if the site should be moved to https (SSL encrypted) only.<br>
<br>
It is my personal belief that in this day and age that everything that can be secure in transit is configured so that it is. Google etc seem to feel the same - as all of their services are available via https (yes, even YouTube!).<br>
<br>
I'd like to get the opinion of the list into if Melbourne Wireless should default to https access to the site - thereby reaping the benefits of SSL. Existing non-ssl access (ie via <a href="http://www.melbournewireless.org.au" target="_blank">http://www.melbournewireless.<u></u>org.au</a>) will be redirected to the secure version of the same content.<br>
<br>
This has the up side that by default, everything on the site will be secure from eavesdropping on unsecured connections. A side benefit is that it will also consolidate all our domains within various search engines - increasing our ranking.<br>
<br>
The down site is that some odd devices may throw up a security warning when you try to visit the site. At this point, I have only managed to find a single Nokia phone that does this.<br>
<br>
Tested working:<br>
* Windows 7: Chrome, IE, Firefox, Safari<br>
* Windows XP: Chome, IE, Firefox, Safari<br>
* Linux: RHEL 6.2 + Firefox<br>
* Android Gingerbread + ICS Browser<br>
* Apple iPad + Safari<br>
<br>
Tested with warning:<br>
* Tysons Nokia something phone.<br>
<br>
If you would like to expand this list, feel free to browse to <a href="https://www.melbournewireless.org.au" target="_blank">https://www.melbournewireless.<u></u>org.au</a> on any device you can.<br>
<br>
Any general discussion on this is also welcome. (Please CC <a href="mailto:committee@wireless.org.au" target="_blank">committee@wireless.org.au</a> with your thoughts).<span class="HOEnZb"><font color="#888888"><br>
<br>
-- <br>
Steven Haigh<br>
<br>
Email: <a href="mailto:netwiz@crc.id.au" target="_blank">netwiz@crc.id.au</a><br>
Web: <a href="http://www.crc.id.au" target="_blank">http://www.crc.id.au</a><br>
Phone: (03) 9001 6090 - 0412 935 897<br>
Fax: <a href="tel:%2803%29%208338%200299" value="+61383380299" target="_blank">(03) 8338 0299</a><br>
______________________________<u></u>_________________<br>
Melbwireless mailing list<br>
<a href="mailto:Melbwireless@lists.wireless.org.au" target="_blank">Melbwireless@lists.wireless.<u></u>org.au</a><br>
<a href="http://lists.wireless.org.au/mailman/listinfo/melbwireless" target="_blank">http://lists.wireless.org.au/<u></u>mailman/listinfo/melbwireless</a><br>
</font></span></blockquote></div><br></div></div></div>