Is there a more secure login to stamp community family. When I login at http://www.stampcommunity.org I keep getting a message saying this site is not secure and my username and password could be compromised?
Hi Albert, This might be caused if you are using a 'bookmark' to open the SCF site. Check the link that is being used to open the SCF site and see if it has your login info (user name and password) in it.
We will not be going to a secure site and it's absolutely ridiculous that browser makers are scaring people into thinking its necessary for sites like this. We're not handling your money or any important personal info so it's far from needed here.
SSL (https) is widely misunderstood by the general public; many folks think it means a website is somehow ‘safe'. SSL (https) has nothing to do whether or not a website is safe. In fact, Lets Encrypt is a good example of exactly this. Out of the 15,270 SSL certificates issued by Lets Encrypt with the word ‘PayPal' in the domain name approximately 14,766 (96.7%) were found to be issued for domains that hosted phishing sites. This percentage is no doubt inflated because most CA authorities (companies which issue SSL certificates) refuse to issue them for domains with ‘PayPal' in the domain name, so phishers are attracted to use Lets Encrypt.
But let's be clear about SSL (https); it simply means ‘encrypted communication channel'. Period. It does NOT mean that the destination website is secure. A website can have zero digital, electronic, or physical security with their website or servers and still get a SSL certificate complete with the associated https port. Somehow just this gives people a warm fuzzy feeling? In other words I can setup a website with an SSL certificate, get the little ‘secure' icon in everyone's browser, but then recklessly store your credit card data in a plain text file on my server.
Having an encrypted communication channel is important to prevent others from sniffing the network traffic and stealing the ethernet packets to ‘eavesdrop'. So thinking that an SSL (https) website is secure is like thinking your entire house is secure just because you have a bullet proof phone line. It speaks nothing about having locks on your doors or windows, if you have a fence or gate, if you have a safe or strongbox, whether or not you are following security practices, or if you have any smoke or burglar alarms. Don