• MigrationDesk is a community, not an agent (nor is affiliated with any). You can post here without an account, but all unregistered posts will be queued for moderator approvals. You can register a free account to bypass moderation and enjoy additional features such as post notification, Live Chat etc.

SSL (HTTPS) is enabled in migrationdesk.com

MysticRiver

Administrator
Staff member
Messages
15,044
Points
113
It is a slightly technical post, most probably have nothing to do with user experience.

As par the recommendation from Google and others big internet players, we are going to have a fully SSL-based server very soon. This is just a security measure against phishing to protect your identity and confidential info (e.g. password) against online scams.

What is SSL?
SSL is a cryptographic protocol to encrypt the data you exchange over internet. Simply put, if your network is compromised, e.g. some phisher/hacker have intrusion, your credentials (passwords, credit card details etc.) can be intercepted by that phisher. To protect these information, it is recommended to encrypt your data before sending over internet (e.g. after you hit submit button). SSL exactly does that. It is a must for high security operations like banking transactions, but it is also recommended for other websites dealing with any kind of secured information. Though, in MigrationDesk, we are not dealing with any financial transaction, we decide to add this extra layer of security to help protecting your data.

Please note, without SSL, you data is vulnerable ONLY IF you have your network compromised (someone is watching you). This is the reason why most of the forums and other "normal" websites have not been very serious with SSL in the past years, however the trend is now changing.

How do you know if a website you are visiting uses SSL?
If a website uses SSL, you will see the URL starts with https:// instead of http://. Also you will see a small padlock in the address bar just beside the URL.

SSL:
SSL.PNG


NON-SSL:
NONSSL.PNG



Is SSL enabled in MigrationDesk.com?
Yes, you will see a small lock icon in the address bar when you browse this website using the URL https://www.migrationdesk.com (notice the use of https:// instead of http://).

What is SSL-only means?
That means, when anybody browse a website without https://, the server will automatically add https:// to the URL. In this way, everybody's safe even if he/she forget to put https:// in the URL.

When MigrationDesk is going SSL-only?
From 1st January 2017.

What additional action you should take from 1st January to visit this site?
Absolutely nothing.

What visual/functional change you should expect?
Nothing, again. It is just a background process for secure data exchange, you won't see any visual/functional change in the forum.

Anything else?
From 1 Jan, you'll see that, even if you type non-SSL URL to access this site (e.g. http://www.migrationdesk.com or http://migrationdesk.com or www.migrationdesk.com or migrationdesk.com), the URL will automatically change to https://www.migrationdesk.com. Again, no visual/functionality change is expected from users' perspective.

So, should you always add https:// while browsing migrationdesk.com?
Doesn't matter from 1st January. You can continue browsing it as usual, even with the shortest form of migrationdesk.com, still you will be using SSL.

So, why is this post?
For next 12 days, I'd like you to visit this website adding https:// to your URL (https://www.migrationdesk.com) and report in this post if you find any abnormality, i.e. delay/loading issue etc. The reason is, before I automatically forward all user to https://.... from 1st Jan, I want to make sure it works seamlessly around the world in all our servers.

From 1st Jan, you can type whatever address/url you want to visit this website, as long as it contains 'migrationdesk.com' as the tld, it will automatically change to https://www.migrationdesk.com
 
Consider before posting:
  • Do not post the same thing in multiple places.
  • No personal contact and/or non-English phrase is allowed.
  • Always post in a relevant thread or open a new one.
  • Better to use the reactions in a post to congratulate/thank.
Top