xenotex

Hello all,

I want to know what everyone thinks (or if they even care) about the use (or lack of use) of SSL encryption when logging into member areas on various HYIP sites! The majority of sites don't utilize it so far, but there are a number of them that do.

Personally, I am a strong proponent of security when it comes to web-sites (its my background). I am relatively new to the HYIP scene, but it has already become quite clear that most sites are quite weak.

There are so many risks in terms of network security when you are running any kind of e-commerce web-site, so HYIP admins should be taking this extra precaution to protect themselves and their clients.

In fact, I just pointed this out to a certain admin who shall remain anonymous for now, and he replied ignorantly that they don't need it, as all their pages are encoded in PHP! And guess what? They are using the so called Gold Coder script...the same one that PremiumDivision where running...

Anyways, what are all your thoughts?

gerryst

I'm going to make new investments only in programs using SSL for all of their member site, i.e. not just the login form.

All of the SSL sites I have invested in so far are still up and running. Although this is just anecdotal evidence, using SSL shows a bit more dedication of the program owners. At least that's my opinion.

By the way, you should check which certificate authority issued the SSL certificate. There are CAs issuing certs directly online. Those certs can be used to encrypt transfers. But they do not tell you anything about the level of trust you can have in the site.

jambutty

Hello xenotex! Glad you could join us.

Good point.

I would prefer to invest in an HYIP where SSL encryption is used but that is no guarantee that the site will not up sticks one day and disappear with the investors’ money. But it is a good indication that they are planning for the longish term otherwise why go to that expense?

Whether you are an experienced HYIP investor or new to the HYIP world a very warm welcome to you from our happy band of forum members. That doesn’t mean that we set fire to you.

I’m jambutty (the ancient one) and over there sleeping in the corner is akuma99. Sssh! Don’t wake him he’s on night shift. jeFF is around here somewhere and if you see a shark swimming around don’t panic, it’s only the boss. He doesn’t bite! All that lot out there are the members. In the Indonesian section we have NDA corp to keep an eye on things.

We have few forum rules, mainly don’t be rude or use foul language – no referral URL’s except in the Advertising section and personal signatures. Anywhere else the basic site URL would be useful so that the reader knows what site you are writing about. If your discussion about the site reads more like an advert than a discussion it will be moved. Please do not refer to your own signature – you can refer to signatures in general though. No multiple or duplicate posts, they will all be deleted. Try to put your posts in the proper section. If you are not sure post it anyway and someone will move it if necessary. Before posting have a look around to see if your topic already has a thread and join it. In the “I Have Been Paid By ….” and “Scam” sections please make the title of your thread the name of the site being discussed – it makes it easy for others to find.

We look forward to you being an active member of this forum and reading what you have to say. We hope that the information and advice that you find on here will be useful to you.

If you have some time to spare maybe you would consider having a read of the following threads.
http://goldentalk.com/faq.html
http://goldentalk.com/t563.html
http://goldentalk.com/t2504.html
http://goldentalk.com/t2510.html
http://goldentalk.com/t2270.html
http://goldentalk.com/t2413.html

You should find them useful.
Jim
(jambutty)

This is totally off topic I know but will members please put their location in their public profile. Just a town and country will do. Thank you to those who have and thanks also to those who do.

Just a reminder to any member who has forgotten how to change their profile. Go to UserCP and select Edit Profile from the menu on the left. Find the Location field near the bottom of the page and enter the details. Hit Save Changes and the job is done.

Seymour77

Using SSL requires an investment in the site in both time and money. While this is still not a gaurantee they won't disappear or run, it at least is one more indicator of seriousness when doing DD. I also am focusing more on sites willing to make obvious quality investments like SSL. Any admin who either is not willing to pay the fees associated with SSL as an investment in his/her business' security, or who blatantly doesn't understand it should be suspect!

jambutty

Hello Seymour77! Glad you could join us.

Whether you are an experienced HYIP investor or new to the HYIP world a very warm welcome to you from our happy band of forum members. That doesn’t mean that we set fire to you.

I’m jambutty (the ancient one) and over there sleeping in the corner is akuma99. Sssh! Don’t wake him he’s on night shift. jeFF is around here somewhere and if you see a shark swimming around don’t panic, it’s only the boss. He doesn’t bite! All that lot out there are the members. In the Indonesian section we have NDA corp to keep an eye on things.

We have few forum rules, mainly don’t be rude or use foul language – no referral URL’s except in the Advertising section and personal signatures. Anywhere else the basic site URL would be useful so that the reader knows what site you are writing about. If your discussion about the site reads more like an advert than a discussion it will be moved. Please do not refer to your own signature – you can refer to signatures in general though. No multiple or duplicate posts, they will all be deleted. Try to put your posts in the proper section. If you are not sure post it anyway and someone will move it if necessary. Before posting have a look around to see if your topic already has a thread and join it. In the “I Have Been Paid By ….” and “Scam” sections please make the title of your thread the name of the site being discussed – it makes it easy for others to find.

We look forward to you being an active member of this forum and reading what you have to say. We hope that the information and advice that you find on here will be useful to you.

If you have some time to spare maybe you would consider having a read of the following threads.
http://goldentalk.com/faq.html
http://goldentalk.com/t563.html
http://goldentalk.com/t2504.html
http://goldentalk.com/t2510.html
http://goldentalk.com/t2270.html
http://goldentalk.com/t2413.html

You should find them useful.
Jim
(jambutty)

Doommister

So can we conclude :
HYIP using SSL have probability last much longer than HYIP not using it.
because they spent more money and need more time to make profit before they run. ( if they are scammer) ?

Seymour77

When doing DD on any site, evidence they are investing for a longer term business is a positive. SSL in my mind is a point in an HYIP's favor because it does indicate a more sincere investment than just buying an off-the-shelf script. But it is still only one point to be considered. I think it is just as important to consider an HYIP's reasons why they are NOT using SSL. This could be more insightful than why another HYIP is using it! The use of SSL alone doesn't increase the probability of a long term program. But taken in total with the rest of a good DD it does point in that direction.

FortuneBroker

Well said Seymour77!

Many programs dont need SSL/https as no information is stored on their site. And for many users SSL/https is problematic, f.ex slow, not supported etc...

My point is: if a site dont need SSL, dont use it!

gerryst

Sorry to correct you: SSL does not encrypt stored information, it is designed to encrypt the data streams between your browser and the webserver (and other servers like mail and IM), thus any website which deals with passwords should use SSL at least for the login page.
Sites dealing with financial information should use SSL for any site containing personal information whatsoever.

By the way: If you do not use SSL, your ISP or the administrator of your corporate network can see anything you're doing online. It takes a little knowledge and the right tools, but it's not at all difficult.

Sorry, you're wrong again. SSL is supported by all major webbrowsers. Be it Internet Explorer, Safari, Firefox, even the less used Konqueror has no single problem with that stuff.
Actually, SSL has been around since the stone age of the Internet (http://en.wikipedia.org/wiki/Secure_Sockets_Layer).

My point is: If a site requires my personal data, it's got to use SSL. If it's handling my financial data, it better uses SSL with very strong encryption.
Actually most HYIP sites use stronger encryption than my bank for online banking; makes me sad. But than they're banksters.