- Nov 6, 2010
- 5,212
- 1,000,000
Hi everyone,
As you will have noticed by now, the forum and general appearance has been significantly improved to modernise our community and keep moving forward.
As part of the changes we have introduced secure server side policies for HSTS (HTTP Strict Transport Security). As part of this change I noticed a lot of people still sharing links to images on http:// sites, please if possible edit your threads to include either the main namespace of '//' e.g. //imgur.com and not http://imgur.com as a reference and this will automatically switch to https:// if available.
By improving this we can ensure that the forum data communication remains secure! HOWEVER - If the rule is not obeyed then it presents non-secure channel access to data on the page. I hope everyone can help make our forum pages 100% totally HTTPS secure by doing this when they make media rich posts.
Additional changes include:
* Added Google Brotli Compression support
* Entire xiaomi.eu domain is now SSL/TLS by default (http and non secure protocols disabled)
* Added new GZIP compression headers
* XSS / Other secure headers to ensure best practice
* Achieved A+ PCI DSS grading for security
* New secure Mail server with TLS/SSL (DKIM, DMARC and SPF to ensure mail from xiaomi.eu really IS from xiaomi.eu)
* Memcached updates and other Caching mechanism changes
* Secure Ciphers as per PCI, NIST and HIPAA guidelines and best practices (Protecting against Logjam, Heatbleed etc)
If you notice anything odd or think the speed of the page load is still too slow please let us know, either myself @ingbrzy or @Acid
Thanks for the support these last 7 years everyone! I hope these changes are to everyone's liking
Mark
As you will have noticed by now, the forum and general appearance has been significantly improved to modernise our community and keep moving forward.
As part of the changes we have introduced secure server side policies for HSTS (HTTP Strict Transport Security). As part of this change I noticed a lot of people still sharing links to images on http:// sites, please if possible edit your threads to include either the main namespace of '//' e.g. //imgur.com and not http://imgur.com as a reference and this will automatically switch to https:// if available.
By improving this we can ensure that the forum data communication remains secure! HOWEVER - If the rule is not obeyed then it presents non-secure channel access to data on the page. I hope everyone can help make our forum pages 100% totally HTTPS secure by doing this when they make media rich posts.
Additional changes include:
* Added Google Brotli Compression support
* Entire xiaomi.eu domain is now SSL/TLS by default (http and non secure protocols disabled)
* Added new GZIP compression headers
* XSS / Other secure headers to ensure best practice
* Achieved A+ PCI DSS grading for security
* New secure Mail server with TLS/SSL (DKIM, DMARC and SPF to ensure mail from xiaomi.eu really IS from xiaomi.eu)
* Memcached updates and other Caching mechanism changes
* Secure Ciphers as per PCI, NIST and HIPAA guidelines and best practices (Protecting against Logjam, Heatbleed etc)
If you notice anything odd or think the speed of the page load is still too slow please let us know, either myself @ingbrzy or @Acid
Thanks for the support these last 7 years everyone! I hope these changes are to everyone's liking
Mark