2820 posts
  • Australia
  • Community Moderator
  • Elite Author
  • Author had a Free File of the Month
  • Most Wanted Bounty Winner
  • Author had a File in an Envato Bundle
  • Has been a member for 5-6 years
  • Contributed a Blog Post
  • Repeatedly Helped protect Envato Marketplaces against copyright violations
+10 more
dtbaker Volunteer moderator says

Oh dear, imagine the issues if the marketplace was all SSL? every author would have to get SSL hosting to post images on the forums and within item descriptions/faq/comments. And if the live previews were left as is every author would need to get SSL hosting otherwise browsers would report security issues. And every existing image on the forum or item page would need to be moved over to an SSL hosting otherwise the site would report security issues left right and centre * hides * no thanks!

SSL on signin rocks. This is how FB did it for years without dramas. Much more secure now. Thanks again devs !

2963 posts
  • Exclusive Author
  • Beta Tester
  • Microlancer Beta Tester
  • Sold between 1 and 100 dollars
  • Has been a member for 4-5 years
  • Bought between 50 and 99 items
  • United States
TNL3542 says

i dont know why.. after i sign in on the secure site.. with username and password.. it goes away.. it should always stay a secure connection even after you sign in

2275 posts Community Team
  • Envato Staff
  • Community Ambassador
  • Repeatedly Helped protect Envato Marketplaces against copyright violations
  • Most Wanted Bounty Winner
  • Won a Competition
  • Microlancer Beta Tester
  • Beta Tester
  • Grew a moustache for the Envato Movember competition
+13 more
contrastblack Staff says

i dont know why.. after i sign in on the secure site.. with username and password.. it goes away.. it should always stay a secure connection even after you sign in

that’s pretty much what everyone is going on about. Once you pass the login phase, you’re out of the SSL zone. That being said, reading up on dtbakers comment, I’m somewhat inclined to think that the SSL implementation across the marketplaces won’t actually be as easy as many think it would be.

505 posts
  • Bought between 1 and 9 items
  • Estonia
  • Exclusive Author
  • Has been a member for 4-5 years
  • Microlancer Beta Tester
  • Most Wanted Bounty Winner
  • Sold between 100 and 1 000 dollars
kriskorn says

i dont know why.. after i sign in on the secure site.. with username and password.. it goes away.. it should always stay a secure connection even after you sign in

As said, only the sign-in process is secure now. The whole marketplace will get an SSL when everything is ready, as Dave said on last page.

9 posts
  • Bought between 10 and 49 items
  • Exclusive Author
  • Has been a member for 2-3 years
  • Sold between 10 000 and 50 000 dollars
GambitTech says

Oh dear, imagine the issues if the marketplace was all SSL? every author would have to get SSL hosting to post images on the forums and within item descriptions/faq/comments.

This indeed would be a huge problem

484 posts
  • Bought between 10 and 49 items
  • Contributed a Blog Post
  • Contributed a Tutorial to a Tuts+ Site
  • Exclusive Author
  • Has been a member for 5-6 years
  • Microlancer Beta Tester
  • Referred between 100 and 199 users
  • Sold between 50 000 and 100 000 dollars
+1 more
omarabid says
SSL on signin rocks. This is how FB did it for years without dramas. Much more secure now. Thanks again devs !

I agree that implementing SSL is a mess with all that externally linked content. But how is SSL on sign-in makes things secure?

13 posts
  • Australia
  • Has been a member for 2-3 years
dgoodlad says

I agree that implementing SSL is a mess with all that externally linked content. But how is SSL on sign-in makes things secure?

It makes things more secure than they were. It’s a compromise; it prevents sniffing plain-text passwords, it prevents cookie hijacking on that domain, etc. You’re right, though, there are well-known attack vectors against login-only-SSL, and this is a serious concern for us. For my part, I’ll be applying some internal pressure to address this issue, but there is a lot of work to be done to get there!

— Dave

832 posts
  • Exclusive Author
  • Has been a member for 4-5 years
  • Microlancer Beta Tester
  • Most Wanted Bounty Winner
  • Referred between 1 and 9 users
  • Sold between 1 000 and 5 000 dollars
SBJEWEL says

Done…

Now we are completely secure i hope…. :D

30 posts
  • Bought between 1 and 9 items
  • Exclusive Author
  • Has been a member for 2-3 years
  • Most Wanted Bounty Winner
  • Sold between 100 and 1 000 dollars
Interspace says

Safari sign-in on Mac working fine now. Thanks.

1026 posts
  • Sold between 100 000 and 250 000 dollars
  • Elite Author
  • France
  • Author had a File in an Envato Bundle
  • Author had a Free File of the Month
  • Contributed a Tutorial to a Tuts+ Site
  • Repeatedly Helped protect Envato Marketplaces against copyright violations
+4 more
Pixelworkshop says

Changing password doesn’t seem to work for me.

by
by
by
by
by
by