Completed Add HTTPS SSL to main parts and in game parts

[jdc20181 213]

HTTPS also known as a Secure Sockets Layer or SSL is important to security of our information. Even though encrypton methods are used HTTPS is more popular and a higher standard for security.

In addition to, browsers are going to start penalizing when not using HTTPS.

Simple Terms

HTTP and HTTPS is not the same.



HTTP is a unsecure connection between you the user and the server. A HTTPS adds a increased level of security.

Generally, this is more of a Dev's only item, and really won't get much public interest as most don't understand why it is important (but devs will)

[Maf 32,326]

Under review

Completed

[ascr]

I know pretty much nothing about those security protocols, but I'm pretty sure that a lot of extra work is required to obtain and maintain an HTTPS status for a website. It's mostly just used where it's really necessary - on banking websites as well as on sites of large organisations (like social networks and Google), which keep a lot of sensitive data on their servers and therefore need a secure connection.

 

I highly doubt that developers would want to do anything about this since they don't really need this extra security.

[jdc20181 213]

Under review

[ascr]

I know pretty much nothing about those security protocols, but I'm pretty sure that a lot of extra work is required to obtain and maintain an HTTPS status for a website. It's mostly just used where it's really necessary - on banking websites as well as on sites of large organisations (like social networks and Google), which keep a lot of sensitive data on their servers and therefore need a secure connection.

 

I highly doubt that developers would want to do anything about this since they don't really need this extra security.

No. not anymore. HTTPS is becoming a larger standard. 

 

Source: https://www.instantssl.com/ssl-certificate-products/https.html

 

This is the message google is wanting to display on websites, with a insecure warning scaring people away. 

 

HTTPS is also becoming more of a standard of encrypting your login data, even with traditonal Database encryption methods, its impossible to rule out some hacking and decryption can be done. 

[Maf 32,326]

No. not anymore. HTTPS is becoming a larger standard. 

 

Don't know anything about that, but sure, I'll take your word for it :D

But I still don't really see the point in this idea. Obviously devs know about HTTPS and they don't need to see a player's idea to realise that they need to upgrade security.

[Hex 11,522]

I agree. The developers need to get a SSL certificate for all of Tanki's official websites. With a SSL certificate, banks around the world will allow payment easily. I always have to call the bank if I want to buy something here - it just doesn't credit my card without calling.

[jdc20181 213]

Don't know anything about that, but sure, I'll take your word for it :D

But I still don't really see the point in this idea. Obviously devs know about HTTPS and they don't need to see a player's idea to realise that they need to upgrade security.

It depends. Really.  Devs - may actually may not have a clue of the chnages in browsers. Plus as mentioned, payment is slowed down without SSL - Just trying to save everyone a haste if the servers were breached. 

[Maf 32,326]

It depends. Really.  Devs - may actually may not have a clue of the chnages in browsers. Plus as mentioned, payment is slowed down without SSL - Just trying to save everyone a haste if the servers were breached.

 

Alright, how about this: name me at least one (3 if you can) other game website that has HTTPS encryption. Steam doesn't count, since it operates on a much bigger scale.

[O.S.A.N 714]

Under review

[ascr]

I know pretty much nothing about those security protocols, but I'm pretty sure that a lot of extra work is required to obtain and maintain an HTTPS status for a website. It's mostly just used where it's really necessary - on banking websites as well as on sites of large organisations (like social networks and Google), which keep a lot of sensitive data on their servers and therefore need a secure connection.

 

I highly doubt that developers would want to do anything about this since they don't really need this extra security.

Captain here, i think the guy has a good point, a secure connexion is needed, especially for the buying processes via tanki shop you may think it's not necessary but credit card infos...remains a sensitive data that any user of tanki may not won't to be compromised...in addition to that it may also solve in an undirect way some problems of the game such as sabotage/hacks...and reinforce the protection of the connection between a player's computer and the server...

[Maf 32,326]

Alright, I'll report this one to devs next week.

[jdc20181 213]

Captain here, i think the guy has a good point, a secure connexion is needed, especially for the buying processes via tanki shop you may think it's not necessary but credit card infos...remains a sensitive data that any user of tanki may not won't to be compromised...in addition to that it may also solve in an undirect way some problems of the game such as sabotage/hacks...and reinforce the protection of the connection between a player's computer and the server...

Exactly! 

 

It protects not only our credit card information, but it could solve a lot of the hacking stuff. 

 

Also if they implemented one of the other suggestions I suggested a while ago they'd wanna switch to HTTPS (it was the one about having the player host - one for blue one for red to prevent sabatoge)

[jdc20181 213]

Alright, I'll report this one to devs next week.

Thanks :)

 

 

Alright, how about this: name me at least one (3 if you can) other game website that has HTTPS encryption. Steam doesn't count, since it operates on a much bigger scale.

RuneScape - It is used on site, and in the game client. 

 

I don't play many online games - I used to play runescape a long time ago, I do not anymore though. 

 

Tanki is the only online game I allocate time for. 

 

But many use it because of payments - Anti-hacking - and overall player security

[deadmanrising 715]

HTTPS also known as a Secure Sockets Layer or SSL is important to security of our information. Even though encrypton methods are used HTTPS is more popular and a higher standard for security. 

 

In addition to, browsers are going to start penalizing when not using HTTPS. 

 

Simple Terms

 

HTTP and HTTPS is not the same. 

 

 

 

HTTP is a unsecure connection between you the user and the server. A HTTPS adds a increased level of security. 

 

Generally, this is more of a Dev's only item, and really won't get much public interest as most don't understand why it is important (but devs will)

Well im pretty sure that the developers will migrate to more secure connection over time to protect all our sensitive information, although most will probably stick to http during this time

[kugelschubs 0]

SSL is free!

Let’s Encrypt <--- search for it.

They offer totally free SSL Certificates.

 

Implement it Perm! Now!

[jdc20181 213]

SSL is free!

Let’s Encrypt <--- search for it.

They offer totally free SSL Certificates.

 

Implement it Perm! Now

no no no... you never wanna take free SSL's they won't be secure unless its something for like a non profit. 

[kugelschubs 0]

no no no... you never wanna take free SSL's they won't be secure unless its something for like a non profit. 

 

I`m 35 and IT expert.

The only difference between free and paid for certificates is the warranty.

For a forum you need no liability.

Payment services have their own encryption.

So, a free SSL certificate would be enough.

[jdc20181 213]

I`m 35 and IT expert.

The only difference between free and paid for certificates is the warranty.

For a forum you need no liability.

Payment services have their own encryption.

So, a free SSL certificate would be enough.

 cool! (Not to bring you down but being 35 you got a long time before you can be called an "expert"  I know people who have programmed since the 80's) I am a programmer/Web developer , I do mostly open source work - And a variety of types of stuff e.g. I made my own webbrowser, I ahve many web based projects etc. , that is why I know a lot about this stuff. But I disagree with getting a free one, unless it comes with their hosting package (I assume they dont maintain the servers themselves)

 

No they don't - The Credit Card thing in game is NOT HTTPS secure. It uses regular http. 

 

The other's are external websites that DO in fact have HTTPS but not credit card/debt card one. 

[GunslingerMongoose 198]

Alright, how about this: name me at least one (3 if you can) other game website that has HTTPS encryption. Steam doesn't count, since it operates on a much bigger scale.

Ninja Kiwi Games log in/log out pages.

Armor Games log in/log out pages.

There was a third gaming website I used to use once upon a time but for the life of me I can't remember the damn name... Oh well. You get the point though. Gaming sites ALWAYS encrypt the player log in/log out pages so that it protects the player's secure info. Unlike Tanki, which doesn't even have an encryption on the home page.

[Aunty_Entity 245]

I'd like to see Tanki available via HTTPS, my local library has all ports closed over I'm not sure how high, because I haven't port scanned it, however the result is that its not possible to play Tanki at any location like this.  It's possible to use another tool like Putty to create an SSL and then pipe over that as it will use lower ports that are available, and protocols that may or may not be blocked.

 

Love Aunty-the poor-Entity

[Maf 32,326]

I'd like to see Tanki available via HTTPS

Topic merged

[Maf 32,326]

Completed

 

The game's main website is now HTTPS

[RIDDLER_8 5,557]

Yes, I do agree that Tanki Online should be played on a secure HTTPS network to avoid the theft of player's passwords. The problem with computer hackers these days is that they are so sophisticated that they always find a loophole backdoor on hacking players logins and passwords. The security on PC for logins and passwords must be improved from time to time to make sure that computer hackers don't find a way to steal players accounts on Tanki Online.