Code of Conduct
Results 1 to 14 of 14
  1. #1
    Missing Oakmoss

    Bonnette's Avatar
    Join Date
    Jul 2015
    Location
    Colorado
    Posts
    2,116

    Default Basenotes not Secure (Message)

    When I logged in just now, my Mac gave me a message that Basenotes is not secure. I've never gotten that message before, so I'm wondering if it's a function of the software transitions Grant is having to make. Anyone else getting the same message?

  2. #2

    Default Re: Basenotes not Secure (Message)

    Hello Bonnette. No, I have not seen that message for BN, but I generally do not log in and out. I have encountered the message for quite a few other sites over the years. It has something to do with a "certificate" having expired. That is all I can tell you. Sorry.
    Fate gives all of us three teachers, three friends, three enemies, and three great loves in our lives. But these twelve are always disguised, and we never know which one is which until we've loved them, left them, or fought them.

    Gregory David Roberts

  3. #3
    Always be smelling

    epapsiou's Avatar
    Join Date
    Sep 2015
    Location
    Oud Forest
    Posts
    5,318

    Default Re: Basenotes not Secure (Message)

    Quote Originally Posted by Bonnette View Post
    When I logged in just now, my Mac gave me a message that Basenotes is not secure. I've never gotten that message before, so I'm wondering if it's a function of the software transitions Grant is having to make. Anyone else getting the same message?
    Is it Mac or Safari.
    Try it in chrome.
    I am assuming that https (lack of) is the culprit. Not a big deal for basenotes since there is no sensitive info here (unlike banks) but it is about time to move basenotes to https
    Bottomline - Do Not worry
    Beauty needs no morality or righteousness.
    It, like nature, does not give a shit

  4. #4

    Default Re: Basenotes not Secure (Message)

    Just to be safe, do not use the password of your basenotes account as a password anywhere else. In general, for best security practices, you should use a different password for every service anyways.

  5. #5

    Default Re: Basenotes not Secure (Message)

    I recently had to transfer my Author/Artist personal website to a new server to get the https certification. My hosting company told me that Google is going to downgrade sites that don't have the certificate... Which means it will show up lower in search results or not at all. So, for example, if someone was searching for "Perfume Social Media," Fragrantica might show up in Google search on the first page and Basenotes not until the second page of results.

    And those warnings will start showing up too. Not good.


    Sent from my iPhone using Tapatalk Pro
    A Greater Monster, The Kickstarter Letters & Death by Zamboni
    daviddavid.net
    And my art store on Etsy

    > Gold Medal for "Outstanding Book of the Year" in Independent Publisher Book Awards
    > National Indie Excellence Book Award finalist
    > A Greater Monster named a "Top 10 Book of 2012" by Common Ills blog
    > Listed in "10 Hot Chicago Reads for Chilly Nights" on Refinery29.com

  6. #6

    Default Re: Basenotes not Secure (Message)

    Quote Originally Posted by Juxtapozbliss View Post
    I recently had to transfer my Author/Artist personal website to a new server to get the https certification. My hosting company told me that Google is going to downgrade sites that don't have the certificate... Which means it will show up lower in search results or not at all. So, for example, if someone was searching for "Perfume Social Media," Fragrantica might show up in Google search on the first page and Basenotes not until the second page of results.

    And those warnings will start showing up too. Not good.
    +1, it's not just about security; Google is mandating the http to https switch and tying it to search. We had to make this same change at my employer not long ago. It was pretty easy for our website/SEO partner to do it, so hopefully it's easy for Basenotes as well.

    Not sure if Google's punishment for not switching to https has already started, but if not, it'll be very soon, as in the end of July according the info available (though you never know with Google). From what I understand, the search performance repercussions for delay will be large.

    ~~

    For those seeing this message for the first time, it doesn't mean your password is any less secure than it was before. Browsers are just being tweaked to flag "regular" http as insecure now, which wasn't the case before.
    "It's not what you look like when you're doing what you're doing; it's what you're doing when you're doing what you look like you're doing."
    Currently wearing: Polo by Ralph Lauren

  7. #7
    Missing Oakmoss

    Bonnette's Avatar
    Join Date
    Jul 2015
    Location
    Colorado
    Posts
    2,116

    Default Re: Basenotes not Secure (Message)

    Thank you so much, Oriane, epapsiou, SmellYouLater, Juxtapozbliss and LiveJazz!

    Oriane, I never log out, since I'm the only one who uses my laptop - so I was surprised to visit Basenotes this AM and see that I needed to log in. I've left the site and returned several times this morning, and have not gotten the message again. epapsiou, I'm using Safari as my browser. SmellYouLater, I know people should use a different password for every site, but my memory is not the best, so I'm guilty of slacking in that regard. Juxtapozbliss and LiveJazz, I didn't realize that the push for https was so strong, it's probably all something to do with that.

    Thanks again to all, I won't be concerned about the message now.

  8. #8

    Default Re: Basenotes not Secure (Message)

    Quote Originally Posted by LiveJazz View Post
    For those seeing this message for the first time, it doesn't mean your password is any less secure than it was before. Browsers are just being coded to flag "regular" http as insecure now, which wasn't the case before.
    Technically this is true, since passwords for the site have always been transmitted via http they have always been insecure, but are no more insecure then before. This can be an issue due to password reuse, and I could also imagine a situation where the potential exists for someone to get scammed via the basenotes marketplace by someone using a compromised account.

    More info. on passwords over http here:
    https://blog.mozilla.org/tanvi/2016/...r-http-please/

    A quote from aforementioned post:
    "What if the credentials for my site really aren’t that sensitive?

    Sometimes sites require username and passwords, but don’t actually store data that is very sensitive. For example, a news site may save which news articles a user wants to go back and read, but not save any other data about a user. Most users don’t consider this highly sensitive information. Web developers of the news site may be less motivated to secure their site and their user credentials. Unfortunately, password reuse is a big problem. Users use the same password across multiple sites (news sites, social networks, email providers, banks). Hence, even if access to the username and password to your site doesn’t seem like a huge risk to you, it is a great risk to users who have used the same username and password to login to their bank accounts. Attackers are getting smarter; they steal username/password pairs from one site, and then try reusing them on more lucrative sites."

  9. #9

    Default Re: Basenotes not Secure (Message)

    Quote Originally Posted by Bonnette View Post
    SmellYouLater, I know people should use a different password for every site, but my memory is not the best, so I'm guilty of slacking in that regard.
    This is understandable, I would not be able to remember all my passwords on my own either For those concerned about password reuse, I would suggest looking into a password manager. Personally, I like KeePassXC; it is free, open-source, and availiable for Windows, Mac, and Linux. It has some neat features like auto-type, a password generator built in for creating long, secure, random passwords, and can sync with dropbox allowing you to use the same password database over multiple devices while also keeping it backed up. I pretty much only have to remember two passwords, the one for my password manager, and the one for dropbox. Stay safe, it's a jungle out there! (. . . on the internet)

    https://keepassxc.org/

  10. #10
    Missing Oakmoss

    Bonnette's Avatar
    Join Date
    Jul 2015
    Location
    Colorado
    Posts
    2,116

    Default Re: Basenotes not Secure (Message)

    Quote Originally Posted by SmellYouLater View Post
    This is understandable, I would not be able to remember all my passwords on my own either For those concerned about password reuse, I would suggest looking into a password manager. Personally, I like KeePassXC; it is free, open-source, and availiable for Windows, Mac, and Linux. It has some neat features like auto-type, a password generator built in for creating long, secure, random passwords, and can sync with dropbox allowing you to use the same password database over multiple devices while also keeping it backed up. I pretty much only have to remember two passwords, the one for my password manager, and the one for dropbox. Stay safe, it's a jungle out there! (. . . on the internet)

    https://keepassxc.org/
    Thank you! That sounds like such a relief.

  11. #11

    Default Re: Basenotes not Secure (Message)

    Quote Originally Posted by SmellYouLater View Post
    This is understandable, I would not be able to remember all my passwords on my own either For those concerned about password reuse, I would suggest looking into a password manager. Personally, I like KeePassXC; it is free, open-source, and availiable for Windows, Mac, and Linux. It has some neat features like auto-type, a password generator built in for creating long, secure, random passwords, and can sync with dropbox allowing you to use the same password database over multiple devices while also keeping it backed up. I pretty much only have to remember two passwords, the one for my password manager, and the one for dropbox. Stay safe, it's a jungle out there! (. . . on the internet)

    https://keepassxc.org/
    Agreed. I use LastPass


    Sent from my iPhone using Tapatalk Pro
    A Greater Monster, The Kickstarter Letters & Death by Zamboni
    daviddavid.net
    And my art store on Etsy

    > Gold Medal for "Outstanding Book of the Year" in Independent Publisher Book Awards
    > National Indie Excellence Book Award finalist
    > A Greater Monster named a "Top 10 Book of 2012" by Common Ills blog
    > Listed in "10 Hot Chicago Reads for Chilly Nights" on Refinery29.com

  12. #12

    Default Re: Basenotes not Secure (Message)

    ^ Me too...lifesaver.
    "It's not what you look like when you're doing what you're doing; it's what you're doing when you're doing what you look like you're doing."
    Currently wearing: Polo by Ralph Lauren

  13. #13

    Default Re: Basenotes not Secure (Message)

    A Greater Monster, The Kickstarter Letters & Death by Zamboni
    daviddavid.net
    And my art store on Etsy

    > Gold Medal for "Outstanding Book of the Year" in Independent Publisher Book Awards
    > National Indie Excellence Book Award finalist
    > A Greater Monster named a "Top 10 Book of 2012" by Common Ills blog
    > Listed in "10 Hot Chicago Reads for Chilly Nights" on Refinery29.com

  14. #14
    Missing Oakmoss

    Bonnette's Avatar
    Join Date
    Jul 2015
    Location
    Colorado
    Posts
    2,116

    Default Re: Basenotes not Secure (Message)

    Quote Originally Posted by Juxtapozbliss View Post
    Thank you, that was very enlightening.

Similar Threads

  1. Basenotes Connection Error Message
    By Jack Hunter in forum Tech Questions, Bug, Feature Requests, Basenotes-related talk...
    Replies: 39
    Last Post: 22nd January 2016, 08:07 AM
  2. Basenotes Private Message Etiquette - What am I doing wrong?
    By nosey74 in forum Just Starting Out
    Replies: 34
    Last Post: 9th November 2015, 06:48 AM
  3. A Message from The Basenotes Accounting Department
    By Somerville Metro Man in forum Male Fragrance Discussion
    Replies: 13
    Last Post: 9th March 2009, 02:55 AM
  4. A Message from The Basenotes Accounting Department
    By Somerville Metro Man in forum Female Fragrance Discussion
    Replies: 5
    Last Post: 3rd March 2009, 03:38 PM
  5. The basenotes message boards (wanted and forsale)
    By Grant in forum Yahoo Groups Messages
    Replies: 1
    Last Post: 15th May 2001, 09:26 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  



Loving perfume on the Internet since 2000