frankj1 wrote:yeah, but why is it suddenly not secure?
Alright, alright... I'll tell you.
Any number of things can trigger it, all related to the https protocol and ssl (or tls now).
Since... some recent version of chrome, it just tells you if it's secure or not... not the details.
Anyway... for the forums here, it appears that the forum links will redirect to http from the https link... meaning that any information transmitted through the forums are not secure.
Realistically, cbid should do the opposite, they should redirect http to https and not transmit login tokens through http because in theory they could be hijacked via a "man in the middle" attack (yes mods, you are vulnerable to such attacks).
Then an attacker could get your login credentials and basically hijack your cbid account.
It's not likely to happen though because one... most cigar smokers are technically illiterate.
Two... cbid is unlikely to show up on any for-profit hackers radar due to weak traffic for too little gain.
Three... the most they are going to be able to do is change the shipping address and have a bunch of cigars shipped to somewhere else (but you could just do a chargeback, so you're all good).
So it's actually a **** in cbids armor to behave the way it does, but in reality, it's unlikely to be a problem... though it could be (I doubt it's actually happened... if it did, they would be using https for the forum links).
There's probably some technical reason for it, probably because it will show a big red flag on there if they mixed http/https components and they probably don't want to pay for someone to go in and fix all the sh*tty links. Remember web devs... relative paths are your friend.
For security measures... don't use your "real" passwords for stuff like cbid. By real passwords, I mean ones you use for your bank accounts and other sh*t that matters.