Posted on Feb 23, 2016
SGT Writer
SGT SGT (Join to see)
6.07K
28
14
1
1
0
Posted 9 y ago
Avatar feed
See Results
Responses: 5
MAJ Bryan Zeski
4
4
0
MAJ
Posted 9 y ago
Any website that holds personal information, including email addresses, birthdays and really, anything else requiring a sign-in, makes sense to have SSL enabled.
(4)
Comment
(0)
CW3 Network Architect
CW3 (Join to see)
9 y
My only regret about your comment is that I can only give it one up-vote
(1)
Reply
(0)
Avatar small
SPC(P) Information Security (Is) Analyst
2
2
0
SPC
Posted 9 y ago
I honestly wonder if anyone tested vulnerabilities in this site? I know major corporations have outsourced their bug testing by offering bounties!
(2)
Comment
(0)
SPC(P) Information Security (Is) Analyst
SPC(P) (Join to see)
9 y
And if you are proficient http://www.hackerone.com and bugcrowd are great places to gain some $$ and a certificate of your work

HackerOne: Vulnerability Coordination and Bug Bounty Platform

HackerOne provides a platform designed to streamline vulnerability coordination and bug bounty program by enlisting hackers to improve your security.
(0)
Reply
(0)
SGT Writer
SGT (Join to see)
9 y
SPC(P) (Join to see) - I'm not about that life, but I'll share the word. . . I think. . . hmmmm.
(1)
Reply
(0)
SP5 Michael Rathbun
SP5 Michael Rathbun
9 y
Heh. It's like after we spent all that time putting up a proper perimeter, dancing the concertina wire about, adding the C-rat cans with pebbles, the OPs, the LPs... And the cadre still made it in through the wire and all the way to the CP without a scratch when it came time for them to test our work.
(0)
Reply
(0)
SPC(P) Information Security (Is) Analyst
SPC(P) (Join to see)
9 y
SGT (Join to see) - It's a positive thing and a smart thing. I've done a few tests and got paid. Watch the video on the home page!
(0)
Reply
(0)
Avatar small
CW3 Network Architect
2
2
0
CW3
Posted 9 y ago
There's no option in the survey that says "No, I never wondered, because I'm Signal, and I do this stuff for a living, to include protecting PII, so I get it already and am glad Rallypoint has an SSL certificate and has SSL enabled by default."
(2)
Comment
(0)
SGT Writer
SGT (Join to see)
9 y
I wrapped that one into the first one. You do lead to a great point. I definitely missed a chance to wave the Signal Corps Dexter flag, Chief Signaleer.
(1)
Reply
(0)
SP5 Michael Rathbun
SP5 Michael Rathbun
9 y
... and would have been horrified to see that "https://" resulted in timeouts.
(1)
Reply
(0)
CW3 Network Architect
CW3 (Join to see)
9 y
That too :)
(0)
Reply
(0)
Avatar small
Avatar feed
Have you ever wondered why Rallypoint has a SSL certificate?
See Results
CW5 Regimental Chief Warrant Officer
0
0
0
CW5
Posted 9 y ago
So the better question is why do we continue on to web sites that have expired certificates? Want evidence? That cert checker that is on our NIPR computers that always dings when we go to government sites....(Tumbleweed, Axway, etc). But anyway, I use SSL all the time to VPN to my house and change the certs periodically.
(0)
Comment
(0)
Avatar small
Sgt Tom Cunnally
0
0
0
Sgt
Posted 9 y ago
I do worry sometimes about being hacked by some who want to do harm to military folks..But they are probably not interested in an Old Fart like me. But I am not comfortable sharing photos of my kids and grand kids online .. just another hangup I have
(0)
Comment
(0)
SGT Writer
SGT (Join to see)
9 y
Better safe than sorry, sir. The phrase "One man's trash is another man's treasure" applies to what we as Veterans who as well.
(0)
Reply
(0)
Avatar small
Read This Next
RallyPoint Home

Join nearly 2 million former and current members of the US military, just like you.

Log In
© RallyPoint Networks, Inc 2024

RallyPoint is not affiliated with DoD
close

Welcome to RallyPoint!

Terms of Service | Privacy Policy I'm a civilian Supporter