Quote:
Originally Posted by astroron
No one has answered the question, why the security was removed?
In a world were Cyber security is a must,it seems strange to reduce security not increase it.?
The part of my post suggesting I may leave IIS was partly done with tongue
in cheek,but the main question was in my opinion legitimate.
|
The security was never removed. It was never there in the first place. Google has decided that if you browse to a site that does not use ssl it will tell you by placing the words Not Secure in the browser bar. In a similar way if the site does use ssl they will place a padlock in the browser bar, informing you the the browser will encrypt your data stream.
They are simply telling you that the site does not encrypt your data stream and consequently that anyone can eavesdrop what you type and send to the site, no one has changed anything.
The padlock also tells you that the website you are browsing is in fact IIS (if it used SSL) and not some dodgy mirrored site in the Dutch Antilles that has hijacked your browser
At the end of the day, I wouldn't worry, as others have said it's not a banking site, and IIS does not have enough traffic to be a great target for hackers, and I trust my neighbours. However in this day and age its basic internet sanitation to secure your site.
Note the CloudyNights url
https://www.cloudynights.com/ it is https not http so it is secure; and so google displays a padlock.
EDIT: I am not advertising CloudyNights just trying to explain something to Ron, hope I havn't breached TOS
Cheers
Paul