Can I change port used while HTTPS access???

This is a forum to suggest new features for mojoPortal. 

This thread is closed to new posts. You must sign in to post in the forums.
8/21/2005 7:43:19 AM
Petr Antos
Gravatar
Total Posts 25
View Posts

Re: Can I change port used while HTTPS access???

>>BTW, why this method name? :-))
>mojoPortal.Web.MemberList.PopulateControsl()

>Its UI code thats what it does, it populate UI controls

 OK, but why are you populating "Controsl" ...

(excuse me, I am trying to regulary eat "own dog food" as you like; and may be today I have overload you ...)

Petr


8/21/2005 7:50:06 AM
Joe Audette
Gravatar
Total Posts 18439
View Posts

Re: Can I change port used while HTTPS access???

So you are saying that even if you re-create the tables they will have latin collation because of your db default even though the server is Czech?

I'm not sure what else to suggest, the table script is the only place I know of any sql collation settings for mojoportal and now they are removed which is good, now it is neutral.

If I were you I would try getting the db default back to Czech for your db and re-create the tables using the neutral script and see if that helps. If you find something in the mojoportal code that is causing this please let me know and I'm happy to make it more neutral but as fars as I know the collation in the table creation script was the only non-neutral sql in the code.

No problem with long thread I definitely want to resolve any localization issues that can be identified in the code.
Maybe we should continue on a new thread in the Localization forum, name it Czech Localization? It will be easier for others to find since this thread started about SSL and ports.

I am actually working all day to localize the date picker and just got it working with cs-CZ so you can let me know if that looks right. You can test it by posting a blog and check the datepicker  (assuming you are using cs-CZ as the culture setting in the Web.config) and let me know if it localizes to Czech or not.

Thanks,

Joe
8/21/2005 7:51:30 AM
Joe Audette
Gravatar
Total Posts 18439
View Posts

Re: Can I change port used while HTTPS access???

Doh! I didn't notice the typo, thanks I'll fix that, I guess if I look at it long enough I stop seeing it
8/21/2005 8:20:17 AM
Petr Antos
Gravatar
Total Posts 25
View Posts

Re: Can I change port used while HTTPS access???

OK, I will start new thread in Localization.

Here only last question about SECURITY:

If I am signed-ni as admin, or as member of admin (or any content/(something secured) editable) ROLE, then I probably want to have whole(?) portal session to go through SSL (even at regular pages there may be and are some admin links, may be LABELS, too) ... or I am wrong ???
Currentlly signed, I can go even to Admin pages through http://... OK, I can setup SSL requirement at PAGE level (although when I tried this right now, it seems nothing was changed ...:-(

Can be SSL requirement related to ROLE, or atleast particular USER too? Have this any meaning? (IMHO, it can simplify and decouple this setting from pages, but I really dont know where to use it ... only that it can be POSSIBILITY to users to be SURE about its secured session, no-compromise)

IMHO,  security is the key to be able (AT ALL) deploy at least simple start-up site allowing users registration with assured appropriate security level for THEM.

This relates to USER IDENTITY shown through public HTTP:// ...  Are in mojoPortal by design ALL E-MAIL fields hidden or processed throu some scrambling? Currently I see my registration email visible together with WELCOME string...

Will be able to register new user even without NOT SHOWING HIS E-MAIL anywhere, if he dont like this?

Thanks for all,
Petr

 

8/21/2005 8:36:36 AM
Joe Audette
Gravatar
Total Posts 18439
View Posts

Re: Can I change port used while HTTPS access???


Currently SSL can be configured at the site level or page level.

I don't think it makes sense to configure it at the role level. The purpose of using ssl to secure content from packet sniffing.  If one role sees the same content and that role is not setup for ssl the content is not secured.  It would only add complexity not value.

No one else can see your email address when they login, are you worried about someone looking over your shoulder and seeing it? Or are you concerned of someone getting your email address by sniffing packets?

I am considering changing to diplay user name instead of email.
8/21/2005 9:48:33 AM
Petr Antos
Gravatar
Total Posts 25
View Posts

Re: Can I change port used while HTTPS access???

packet sniffing, of course, especially in wireless networks. Although I have at home TKIP encryption on WIFI, my internet connection goes through CDMA/EVDO (where I dont know how strong?security is) and even anywhere on the way to my?web application ...; I am not so paranoid about my own usage, but users may be?far more lamers in security and I want to avoid as much as possible any possibility to disclose its identitiy, to steal its emails, or something similar ...?BY mojoPortal. (Although their have this already stolen by anything else, of course....... - but, take security?THE requirement, please, we will have better sleeping :-)

Again SSL issue - seems there any caching changes things slightly.... currently I am signed as admin and I am not able to go to any link, even unsecured ones contains https/:port and mojo looks as freezing somewhere ... I have this config (without this, it seemed to froze some minutes before... - i have wirelles switch with NAT between internet connection provider, no proxy, but at their side there are some issues - CDMA, dynamically assigned and changed IPs ... grrrr, but nothing bad seen on other secured sites)

Hope I will look at source ASAP too, to free you from that long debate with me :-))) We have late evening, so I must thank you?today for all your invaluable support, Joe. I believe that all occured issues are not architectural flaws, only keyboard and fingers dropouts :-)

Petr
You must sign in to post in the forums. This thread is closed to new posts.