Temple of The Roguelike Forums

Websites => Temple of the Roguelike => Topic started by: Slash on May 24, 2018, 08:56:34 PM

Title: May 24 Updates, SSL and GDPR
Post by: Slash on May 24, 2018, 08:56:34 PM

Hello all!

• Updated SMF from 2.0.13 to 2.0.15
• Installed SSL certificate and setup HTTP to HTTPS redirection
• Installed mod for GDPR tools (link (https://www.smfhacks.com/index.php?action=downloads;sa=view;down=207)):
  
  • User now can export their profile data and post information
  • When a user deletes his account, his posts will be anonymized (IP Address and email removed, anonymous username set)
• Updated Privacy Policy regarding data usage and GDPR rights

As usual, please let me know if something doesn't work :)

Title: Re: May 24 Updates, SSL and GDPR
Post by: Allthatglitters on May 29, 2018, 10:14:31 AM

Thanks for the forum. A question though about the captcha - does it have to be for every post and every edit?

I can imagine many people just giving up since it's so much effort.

And it clearly doesn't stop spam - see the latest ten or so posts by "samsam23"

Just a thought.

Title: Re: May 24 Updates, SSL and GDPR
Post by: Slash on May 29, 2018, 02:20:22 PM

Sure, I think it only works that way for the first few posts? I may be wrong, I need to check back into it.

I dream a world without spambots.

Title: Re: May 24 Updates, SSL and GDPR
Post by: Kyzrati on November 13, 2018, 08:28:51 AM

Quote from: Slash on May 24, 2018, 08:56:34 PM

As usual, please let me know if something doesn't work :)

Note that although you've switched to HTTPS, most forum pages are still not secure. You need to ensure all images (including even avatars and icons, for example) also fall under the HTTPS rules, otherwise the site is marked as mixed content, which isn't fully secure. (On SMF simply redirecting HTTP to HTTPS isn't enough!)

Edit: Also, I've been seeing people mention elsewhere that they can't/won't visit the Temple because of this and/or the "improperly configured certificate" issue.