The forum has moved, and you are here!

This would be a great time to come up with a unique favicon for the site, maybe a shield or a key or something. Even just a W for Wilders would be nice.

 

Congratulations with successful move.

Wilders Forums became even better!

 

Good job with the upgrade Mike. It's faster than ever now.

 

such ugly tab icon.......

-----------------------------------

 

It seems we've already upgraded to using the TLS 1.2 protocol, now to update the cypher suite to a better choice!

https://www.ssllabs.com/ssltest/analyze.html?d=wilderssecurity.com&hideResults=on&ignoreMismatch=on
(66.x is the old server for comparison)

 

I only see non-EC GCM cyphers, which is why you're failing the FS test with Chrome and getting A- instead of A (AFAIK).

 

Yeah. You'll want things like HSTS enabled if you're chasing an A+.

I believe you also want to prioritize TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 over CBC cyphers even if the latter is 256 (so it should be 2nd on the list) but I'm not 100% sure. AFAIK GCM is meant to be flat out better.

 

Nice
I see there is a new certificate, is this the correct SHA-1 fingerprint?
EDIT: You just beat me

 

LOL! As soon as I clicked on my Wilder's bookmark I had a warning flag telling me the fingerprint didn't match. I updated it (after reading your post) but it was amazing how I was instantly "flagged". Nice MITM protection.

 

I didn't even know there was a https version of this forum. I added certificate and will use secure version in future.

hqsec

 

I usually don't bother using https with Wilders...but just tried it.

Opera popped up that there was a new certificate.

 

Wilders new server

Hi, With regard to the forum moving hosting companies, just want to mention that since the announcement Wilders has gone from read only in the old server to being in the new location, back and forth since the announcement a few times. Early this morning NY time it was in the new, and around noon it wasn't, and now its back in the new location. I thought I'd mention it while its in the new before I lose it again in case you aren't aware.

 

LWM and friends:

I see where our favorite forum has had its SSL certificate renewed and strengthened this morning. Although I was secretly wishing for a stronger message authentication code (MAC) like SHA-256 from SHA1, I'm still very proud of all the folks that were involved in the move and the overall general upkeep of the forum.

But hey - maybe we'll get a new MAC for Christmas!

For N00bs - this forum is maintained better than some banking sites!

 

Re: Wilders new server

LowWaterMark, Thanks for the heads up. Can you help me? I don't know where to find my hosts file. Can you point me to it on my computer? Or will this eventually correct itself?

 

Re: Wilders new server

I don't have Win installed now, but Googling, it appears to be located here:

c:\windows\system32\drivers\etc

 

Re: Wilders new server

Kerodo, Thanks. Will this finally just correct itself without me doing anything?

 

Re: Wilders new server

You're welcome... Not sure, on that question. LowWaterMark would know I imagine..

 

Hi,

Most of the technical discussions here are beyond my comprehension, but if all of it helps, then I'm glad for the changes!

An observation: I don't notice any difference in loading the site, nor in navigating. Pages have always loaded in about 1-1/2 sec. on my cable connection, and it seems to be the same now.

A couple of questions:

1) People mention using a host file. What is the advantage of that with respect to visiting Wilders?

2) What is the advantage of using the HTTPS connection?

thanks,


----
rich

 

So far, I have had no issues accessing the site, and I must say, it does seem much faster/quicker to load pages, and I see none of the mild occasional glitches that I was seeing a week ago or so. This seems much improved...

 

Some people are using DNS servers that haven't yet updated heir DNS records for wilderssecurity.com. In such case hosts file can be used to get to right IP when using wilders domain.

HTTPS connection provides encryption for your internet traffic on this site. That means that your ISP (or somebody else) can't monitor the content of your network traffic while you're on this site.

hqsec

 

Hmmmm...