Call me paranoid, but is it possible to add security to connections to the forums, TLS, SSL, or other form? May not be needed at all, seems like a good measure anyways.
Steam OpenID is a secure login method. However, I'm not sure if the alternate password login is. Let me check and edit this post later. EDIT: Password-based login isn't secured, so I can understand where Cobalt is coming from. Right now, the way to log in securely is with Steam OpenID.
Sorry, I didn't mean the login method. I mean the continuous connection to the forum whenever you load a page. The icon in browser address bars telling if the page is secured, and if so, displaying a green lock symbol. It current displays unsecured status for all forum pages after Steam SSO. Basically I meant secure the entire forum.
StartSSLâ„¢ Certificates & Public Key Infrastructure Get yo free green lock symbol here!! Level 1 certificates are a bit pseudo saftey but if you like the green symbol I bet you will feel nice with it. But yea could be a nice addition.
This may seem nice for the start, but it brings in a lot of problems: - The yearly cost of certificates - Higher server load (therefore easier DoS) - External images will cause most of modern browsers to show a warning, and a broken web page. - Shoutbox and some other stuff won't work. Also, there is not really much sensitive data here to cover..
I suppose there really isn't much to hide here, just a peace-of-mind thing. Didn't consider that there'd be cons, I was under the impression it was just a matter of adding certificates etc. Well, you learn something everyday.