The Arcive of Official vBulletin Modifications Site.

IndigoSociety · #1 11-27-2011, 10:47 AM

How would I convert my forum to run on HTTPS instead of HTTP?

Does vBulletin support this mainly out of the box? I can't find anything on this besides a "hacky" vbulletin.com forum post.

private_ale · #2 11-27-2011, 06:34 PM

It supports it. I would personally wait until the release of 4.1.10 as it fixes a inline-moderation bug relating to HTTPS. The only really vB-specific thing to change is the relevant values in the Site Name / URL / Contact Details section of the ACP to use "https://" instead of "http://".

Since you've omitted a good chunk of information (webserver configuration & control panel, if any) no one is going to be a able to help much.. So you'll have to contact your host about that. You will need a private IP address and a valid certificate, though.

It's not difficult.

techtech3d · #3 06-03-2014, 04:27 PM

This is a great question.

I've changed the Site links to https.

However the login box does not pop up in Firefox, Chrome, and IE as they all believe it's a security concern of http mixing with https.

In my .htaccess file I've forced all to https but no luck. I have PHP 5.4 running with Vbulltein 4.2.1 on a Linux setup.

Any ideas? (Clean browsers were used on various machines.)

squidsk · #4 06-03-2014, 07:55 PM

You likely have either a self-signed SSL certificate or a certificate that is not issued by a signing authority that is recognized by those web browsers, which means that every user will at least once be forced to see the message and click to continue on anyways.

techtech3d · #5 06-08-2014, 10:34 PM

@squidsk

Wanted to update. The HTTPS site was pulling an HTTP located ajax script.

Thus the browsers went crazy as HTTP and HTTPS were mixed for the users.

Thanks for the help!

tbworld · #6 06-09-2014, 12:09 AM

Quote:

Originally Posted by techtech3d

I have PHP 5.4 running with Vbulltein 4.2.1 on a Linux setup.

Just a reminder:

vb4.2.1 <--> php 5.3
vb4.2.2 <--> php 5.3, php 5.4

Unless you have personally modified your vb4.2.1 code you will run into some problems.

Dave · #7 06-09-2014, 08:38 AM

You also have to keep in mind that if any of your users include any images or external resources in their post, it will "break" the HTTPS since most of the time those external resources are being loaded over HTTP instead of HTTPS.

CAG CheechDogg · #8 06-09-2014, 03:11 PM

Quote:

Originally Posted by Dave

You also have to keep in mind that if any of your users include any images or external resources in their post, it will "break" the HTTPS since most of the time those external resources are being loaded over HTTP instead of HTTPS.

That is not true with images, with scripts it is, but images will still load fine if they are served from http instead of https ...

Dave · #9 06-09-2014, 03:49 PM

Quote:

Originally Posted by CAG CheechDogg

That is not true with images, with scripts it is, but images will still load fine if they are served from http instead of https ...

Of course it will load fine, but that doesn't mean your HTTPS connection is secure if you load HTTP images of an external server.

CAG CheechDogg · #10 06-09-2014, 06:29 PM

From what I understand, only those elements which are not on https are not encrypted, everything else that is behind https is .. unless you have actual documentation that what you are saying is true the purpose of having "your" content or elements behind https is for just that, to encrypt that which is behind https...

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.04009 seconds Memory Usage 2,252KB Queries Executed 11 (?)
More Information
Template Usage: (1)SHOWTHREAD (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (1)ad_showthread_beforeqr (1)ad_showthread_firstpost (1)ad_showthread_firstpost_sig (1)ad_showthread_firstpost_start (3)bbcode_quote (1)footer (1)forumjump (1)forumrules (1)gobutton (1)header (1)headinclude (1)navbar (3)navbar_link (120)option (1)pagenav (1)pagenav_curpage (1)pagenav_pagelink (10)post_thanks_box (10)post_thanks_button (1)post_thanks_javascript (1)post_thanks_navbar_search (10)post_thanks_postbit_info (10)postbit (10)postbit_onlinestatus (10)postbit_wrapper (1)spacer_close (1)spacer_open (1)tagbit_wrapper Phrase Groups Available: global inlinemod postbit posting reputationlevel showthread	Included Files: ./showthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/functions_bigthree.php ./includes/class_postbit.php ./includes/class_bbcode.php ./includes/functions_reputation.php ./includes/functions_post_thanks.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete showthread_start showthread_getinfo forumjump showthread_post_start showthread_query_postids showthread_query bbcode_fetch_tags bbcode_create showthread_postbit_create postbit_factory postbit_display_start post_thanks_function_post_thanks_off_start post_thanks_function_post_thanks_off_end post_thanks_function_fetch_thanks_start post_thanks_function_fetch_thanks_end post_thanks_function_thanked_already_start post_thanks_function_thanked_already_end fetch_musername postbit_imicons bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete postbit_display_complete post_thanks_function_can_thank_this_post_start pagenav_page pagenav_complete tag_fetchbit_complete forumrules navbits navbits_complete showthread_complete
Messages:

The Arcive of Official vBulletin Modifications Site.

It is not a VB3 engine, just a parsed copy!