Register Members List Search Today's Posts Mark Forums Read

Reply
 
Mod Options
SSL Secure your Private Messages Details »
SSL Secure your Private Messages
Mod Version: 1.00, by CJi (Member) CJi is offline
Developer Last Online: May 2004 I like it Show Printable Version Email this Page

This modification is in the archives.
vB Version: 2.2.x Rating: (0 vote - 0 average) Installs: 4
Released: 15 Jun 2002 Last Update: Never Downloads: 2
Not Supported  

A simple hack to encrypt your PMs using SSL when users are browsing them. Includes the ability to disable for individual users at their request.

This works on my forum, your mileage may vary. Tested only on 2.2.5. Support is minimal, but I'll do my best here when I get time.

Download Now

Only licensed members can download files, Click Here for more information.

Show Your Support

  • To receive notifications regarding updates -> Click to Mark as Installed.
  • This modification may not be copied, reproduced or published elsewhere without author's permission.
Comments
  #2  
Old 16 Jun 2002, 04:30
VirtueTech VirtueTech is offline
 
Join Date: Oct 2001
Does this mean messages are sent using SSL as well?

Great idea. If so I think this would be very useful to members
__________________
PaintballCity.com
VB Board of the Month: October
Reply With Quote
  #3  
Old 16 Jun 2002, 14:46
CJi CJi is offline
 
Join Date: Nov 2001
Yes, messages are sent using SSL (as well as read).
Reply With Quote
  #4  
Old 16 Jun 2002, 15:59
Caliber Caliber is offline
 
Join Date: Feb 2002
Out of curiosity, what are you trying to accomplish by securing them? Prevent them from being read in transit, or protect your users privacy. I can see how securing them would prevent their being read in transit, but not protect users privacy. If they are encrypted on your server and no one can read them, then this would be a great feature, but if the board owners can decrypt them, I do not see how privacy is protected as the messages would not be impervious to a subpoena.
Reply With Quote
  #5  
Old 17 Jun 2002, 22:14
Demascus's Avatar
Demascus Demascus is offline
 
Join Date: Dec 2001
thankz this is a great hack
Reply With Quote
  #6  
Old 22 Jun 2002, 18:45
CJi CJi is offline
 
Join Date: Nov 2001
Caliber: We have a dedicated server, so there is no real need to encrypt them on the server. Ok, so we're not impervious to hackers, but there can be no casual snooping. Ultimately it was a publicity stunt: users like encryption. There are instances when it can be useful (e.g. in a corporate lan environment, it'd stop admins casually snooping traffic) and with continuing draconian 'legal snooping' laws in the UK and Europe, it prevents governments and ISPs casually logging (meaningful) data.
Reply With Quote
  #7  
Old 22 Jun 2002, 18:49
CJi CJi is offline
 
Join Date: Nov 2001
I've also updated this hack on our server. When a user clicks register, they get provided with the terms and conditions of registration. This is now provided unencrypted, with a notice displayed saying that once they click Agree, their connection will be encrypted. If they would not like that to happen (for personal preference or a technical reason) they can click a link to disable it. This link sets a cookie and redirects back to the registration page where they are now told their data will NOT be encrypted when they click Agree. I'll edit the hackfile (once I've figured out what I did in a meaningful way) and re-upload.
Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Mod Options

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


New To Site? Need Help?

All times are GMT. The time now is 00:51.

Layout Options | Width: Wide Color: