Insecure Content

I don’t know if you’re aware of this, but every page on HMF contains content references that are not secure. It seems the forum makes use of Schema.org to manage the structured content of the pages. However, throughout the page source all the references are to http://schema.org and not https://scheme.org. I’m not familiar with Discourse forum software, so it might be an inherent issue with the Discourse software that simply embeds it that way or it is something entered incorrectly when the forum was setup.

I realise in the grand scheme of things it’s a small matter, but I thought I’d mention it in case it’s something that has been bothering whoever manages the site (@wincenworks or one of the mods?) and they wanted to resolve it.

1 Like

Thank you for the heads up - unfortunately that is in the coding that takes place deep in the back end - looking at the implementation it is fairly low risk and shouldn’t undermine the primary purposes of us using encryption:

  1. Protecting people’s login details
  2. Being faster

That said I still don’t recommend the forum as a place to post your extra private information or credit card details, not even in PMs.

2 Likes

It might fix it for the user if you use browser plugins that try to force https connections, such as HTTPS Everywherte.

Chrome: HTTPS Everywhere - Chrome Web Store

Firefox: HTTPS Everywhere – Get this Extension for 🦊 Firefox (en-US)

6 Likes

Thanks for the plug-in suggestions, Urben. However, the pages seem to have all starting loading as secure now. I’m guessing one of you wizards did something or… I have no idea!?!

Since all the content is basically for formatting - it’s quite possible it’s simply just cached for now so not bothering to access the insecure data.