[QUOTE=swl551;315425]Why leave port 80 taking traffic when you have an SSL site??[/QUOTE]

Please give us an example of a site that doesn't leave port 80 open which offers a certified port 443?

Bonus question: please provide us with an example of a site [B][I][U]you[/U][/I][/B] provide which only offers port 443.

[QUOTE=chalsall;315435]Bonus question: please provide us with an example of a site [B][I][U]you[/U][/I][/B] provide which only offers port 443.[/QUOTE]

Still waiting grasshopper...

Take your time.

[QUOTE=chalsall;315435]Please give us an example of a site that doesn't leave port 80 open which offers a certified port 443?[/QUOTE]
Banking sites? Sure, there might be a landing page on port 80, but after logging in, it is SSL all the way, baby :smile:

[QUOTE=chalsall;315424]Since [URL]https://www.gpu72.com/[/URL] has worked for months, you might reasonably assume I know that.
[/QUOTE]
I did not notice that before and will happily switch to SSL now ...

I really don't know: will automatic switching (forwarding) to SSL break anything? If so, then maybe an "SSL version" link or something like that could point interested users to this possibility.

sites with no port 80 open.
 

[QUOTE=chalsall;315454]Still waiting grasshopper...

Take your time.[/QUOTE]

Master,

While I won't divulge the sites I run on a public forum I'd be happy to show you my CISCO ASA rules showing outside to inside traffic being restricted to just 443 for my WEB servers.

You can also have a firewall redirect a port 80 call to 443.
IIS has the same feature if you prefer to handle it at the web server level. (I put money on apache having a redirect option)

Additionally on your server your port 80 based site can have a page redirect to your 443 site or your port 80 site's page can say "sorry not allowed please visit... %some url% with an href.

In the case of the product infrastructures I manage, port 80 is not allowed to be open. We'd pass our security scan audit if were.

There are a lot of ways to ensure people use only your 443 site.

-Grasshopper---

[QUOTE=swl551;315491]
I put money on apache having a redirect option
[/QUOTE]

[URL]http://wiki.apache.org/httpd/RedirectSSL[/URL]

I want my bonus!
 

[QUOTE=chalsall;315435]Please give us an example of a site that doesn't leave port 80 open which offers a certified port 443?

Bonus question: please provide us with an example of a site [B][I][U]you[/U][/I][/B] provide which only offers port 443.[/QUOTE]

Let's just say that web site security is one of the things that I get paid to ensure...

[QUOTE=LaurV;315321]indeed, firefox is good in remembering all my passwords, better then me. And because I access different sites at work and home, sometime I need to synchronize those passwords, and I use a screen capture (png) from that firefox menu, which I am sending from home to work or viceversa, in a compressed/encrypted form (zip or rar with password) :razz:[/QUOTE]

Try xmarks or LastPass. Latter is paid but the former (part of the same company now) has been providing me with password/bookmark/open tab synchronization since 2008.

[QUOTE=swl551;315496]Let's just say that web site security is one of the things that I get paid to ensure...[/QUOTE]

Really?

But you don't appear to understand how web site security works.

Using only port 443 does not guarantee that a site is secure.

Right. Only you know everything.
 

[QUOTE=chalsall;315699]Really?

But you don't appear to understand how web site security works.

Using only port 443 does not guarantee that a site is secure.[/QUOTE]

You want to pick at nitty b.s. knowing full well it was assumed 443 was used as the default port for an SSL certificate. I'm tired of your better than EVERYONE else attitude and your hair brained ideas on how things should work. You think you know it all.. You don't I could school you for days, but I'd fire you first for being too rude!

How about I not answer any of your threads anymore and YOU don't answer mine.

What's really sad is someone gave you permissions to run these forums. I guess they didn't realize you were going to be an ego maniac.

[QUOTE=swl551;315737]You want to pick at nitty b.s. knowing full well it was assumed 443 was used as the default port for an SSL certificate. I'm tired of your better than EVERYONE else attitude and your hair brained ideas on how things should work. You think you know it all.. You don't I could school you for days, but I'd fire you first for being too rude!

How about I not answer any of your threads anymore and YOU don't answer mine.

What's really sad is someone gave you permissions to run these forums. I guess they didn't realize you were going to be an ego maniac.[/QUOTE]

What you said was wrong.

Using port 443 (HTTPS) does [U]not[/U] guarantee security.

I'm sorry if you don't like that.