Search results

And I probably deserved it, too :P. Full disclosure here: I work for a company where https is absolutely required, and security is of paramount importance. Including on our forums, even though the forums themselves don't carry any more sensitive data than this forum does. So I'm probably more...

Bozza - I've actually just discovered the site doesn't work at all if I try to force https. That's unforgivable and needs addressing.

It's running on vBulletin 4. It is, by definition, not secure. And that includes when it's in HTTPS mode. It's (very) old software, and well known to be a security sieve. As far information that needs to be secured, the database here holds, at a minimum, our email addresses. And for those...

Being rather blunt: NSC is using vBulletin 4.2.2. It's one of the leakiest options out there, from a security standpoint. Bozza would be far better off finding the time to do a switch over to something like the open source version of Vanilla. Not only is it free (no licence required), but it's...