Canreef Aquatics Bulletin Board  

Go Back   Canreef Aquatics Bulletin Board > Other > Q&A

Thread Tools Display Modes
Old 01-05-2017, 10:58 PM
warriorcookie's Avatar
warriorcookie warriorcookie is offline
Join Date: Jan 2012
Location: Saskatchewan
Posts: 171
warriorcookie is on a distinguished road

Originally Posted by Myka View Post
Very interesting warriorcookie! I use the same username and email address on each forum I use, though I have a different password on each forum, and the email I use is not my main email, and doesn't share a password with anything else. Am I doing it "right"? I like this idea of a password manager, I'll have to look into it.
Yup, that's the way I do it. Keep the info you enter in your profile limited and use a different password for everything. Repeating the email or username is fine.

There's lots of password managers out there. You need to make sure whichever you go with is secure. If it becomes compromised then they have everything. After looking into several, Lastpass was the one I settled on.
Reply With Quote
Old 01-12-2017, 05:02 PM
SoloSK71 SoloSK71 is offline
Join Date: Oct 2012
Location: Calgary, AB, Canada
Posts: 374
SoloSK71 is on a distinguished road

Wow, I can't believe the contrast in staff response between here and Reef Central to my question. Myka and Titus, you guys have gained a ton of respect in my books.

Where did my rum go?!

Success in this hobby does not count how you spend your money, it counts how you spend your time.
Reply With Quote
Old 01-05-2023, 05:00 AM
Samw's Avatar
Samw Samw is offline
Join Date: Nov 2001
Location: Yaletown Vancouver
Posts: 2,651
Samw is on a distinguished road

oh interesting. I didn't realize Canreef had been running this long without HTTPS enabled.

Without HTTPS, our login ids and passwords and everything else are sent to the webserver in plain text for anyone between the network endpoints to read with a packet sniffer. Of course, the users most at risk are the ones that use the same id/email and passwords on other websites. That's how many people get hacked.

There are free certificates now such as letsencrypt. I haven't personally used them myself but it looks popular.

Taking a quick scan at some aquarium forums, reef2reef, reefcentral, bcaquaria, plantedtank, etc are all using HTTPS.

Last edited by Samw; 01-05-2023 at 05:06 AM.
Reply With Quote
Old 01-05-2023, 03:13 PM
titus's Avatar
titus titus is offline
Join Date: Aug 2001
Location: Hong Kong
Posts: 3,163
titus has disabled reputation


The plan is to migrate to Discourse and a lot of code was written to automate generation and rotation using Let's Encrypt, and no I'm not using certbot but written our own custom one. The UAT version was deployed on You can see the cert expired on 20 Nov 2022. That's not the issue but the following.

My original plan was to have the following: for the discussion forums<other stuff> for other stuff

And so I setup an NGINX reverse proxy to do this but there were some issues with Discuss supporting this. That was back in Oct and then I ran into a rabbit hole and then stopped.

I could have gone with the following: for discussion forum for other stuff

However doing it this way means we need different DNS alias entries for each incremental feature I want to add. It is not insurmountable as I setup our own DNS server with code as well but it's extra step and I really didn't like the idea of how the DNS look.

Given how far we have gotten I'd rather just finish the work proper.

A link to
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

All times are GMT. The time now is 10:39 PM.

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.