vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin 2.x Full Releases (https://vborg.vbsupport.ru/forumdisplay.php?f=4)
-   -   SSL Secure your Private Messages (https://vborg.vbsupport.ru/showthread.php?t=39876)

CJi 06-14-2002 10:00 PM
SSL Secure your Private Messages
 
A simple hack to encrypt your PMs using SSL when users are browsing them. Includes the ability to disable for individual users at their request.

This works on my forum, your mileage may vary. Tested only on 2.2.5. Support is minimal, but I'll do my best here when I get time. :)

VirtueTech 06-16-2002 02:30 AM
Does this mean messages are sent using SSL as well?

Great idea. If so I think this would be very useful to members

CJi 06-16-2002 12:46 PM
Yes, messages are sent using SSL (as well as read).

Caliber 06-16-2002 01:59 PM
Out of curiosity, what are you trying to accomplish by securing them? Prevent them from being read in transit, or protect your users privacy. I can see how securing them would prevent their being read in transit, but not protect users privacy. If they are encrypted on your server and no one can read them, then this would be a great feature, but if the board owners can decrypt them, I do not see how privacy is protected as the messages would not be impervious to a subpoena.

Demascus 06-17-2002 08:14 PM
thankz this is a great hack

CJi 06-22-2002 04:45 PM
Caliber: We have a dedicated server, so there is no real need to encrypt them on the server. Ok, so we're not impervious to hackers, but there can be no casual snooping. Ultimately it was a publicity stunt: users like encryption. There are instances when it can be useful (e.g. in a corporate lan environment, it'd stop admins casually snooping traffic) and with continuing draconian 'legal snooping' laws in the UK and Europe, it prevents governments and ISPs casually logging (meaningful) data.

CJi 06-22-2002 04:49 PM
I've also updated this hack on our server. When a user clicks register, they get provided with the terms and conditions of registration. This is now provided unencrypted, with a notice displayed saying that once they click Agree, their connection will be encrypted. If they would not like that to happen (for personal preference or a technical reason) they can click a link to disable it. This link sets a cookie and redirects back to the registration page where they are now told their data will NOT be encrypted when they click Agree. I'll edit the hackfile (once I've figured out what I did in a meaningful way) and re-upload.


All times are GMT. The time now is 12:35 AM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.00982 seconds
  • Memory Usage 1,714KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (7)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete