Morgan
said
:
Enlighten me, Indsy, because I don't know. What's taking Jagex so long to migrate the entire site to HTTPS? Isn't it as easy as installing a SSL certificate and changing a few URLs? Something that could be done in less than 2 hours.
I don't understand why they talk about it like it's a mammoth task.
Hiya Morgypie
Sorry for my late reply.
There is a little more too it than that. However it is taking a long time, no surprise tbh.
Two possible reasons come to mind.
Firstly non secure links, pages, APIs that Jagex have no control over. There really shouldn't be too much of that to deal with, but measures need to be taken. Mixed content is a big thing to sort out, particularly if dealing with external sources. Even within their domain there would be many things we don't see (APIs) that need to be changed.
Second thing I can think of is some of their server side stuff might not be up to date thus can't interact with modern SSL certificates. I have seen this with PHP in the past, running older versions that can't even establish a handshake with newer HTTPS standards. Then upgrading PHP breaks a million other things (seen big databases inaccessible after an update). Basically a snowball effect and it escalates really fast. Fixing one thing breaks a number of other things.
I'm not sure if the last point is an issue for Jagex but considering how old the forum software is and perhaps the OS for the server is even older, then it would be a nightmare. It just depends how vigilant they've been over the years. It would come as no surprise if they were running older code that can't work with modern standards.
Things get harder over time if left uncared for. The older the code the harder it is to migrate away from. So maybe that's slowing them down. Of course there are other reason for the delay. They might not be working on it right now, it could be on the on the back burner or even abandoned.
Enlighten me, Indsy, because I don't know. What's taking Jagex so long to migrate the entire site to HTTPS? Isn't it as easy as installing a SSL certificate and changing a few URLs? Something that could be done in less than 2 hours.
I don't understand why they talk about it like it's a mammoth task.
Hiya Morgypie
Sorry for my late reply.
There is a little more too it than that. However it is taking a long time, no surprise tbh.
Two possible reasons come to mind.
Firstly non secure links, pages, APIs that Jagex have no control over. There really shouldn't be too much of that to deal with, but measures need to be taken. Mixed content is a big thing to sort out, particularly if dealing with external sources. Even within their domain there would be many things we don't see (APIs) that need to be changed.
Second thing I can think of is some of their server side stuff might not be up to date thus can't interact with modern SSL certificates. I have seen this with PHP in the past, running older versions that can't even establish a handshake with newer HTTPS standards. Then upgrading PHP breaks a million other things (seen big databases inaccessible after an update). Basically a snowball effect and it escalates really fast. Fixing one thing breaks a number of other things.
I'm not sure if the last point is an issue for Jagex but considering how old the forum software is and perhaps the OS for the server is even older, then it would be a nightmare. It just depends how vigilant they've been over the years. It would come as no surprise if they were running older code that can't work with modern standards.
Things get harder over time if left uncared for. The older the code the harder it is to migrate away from. So maybe that's slowing them down. Of course there are other reason for the delay. They might not be working on it right now, it could be on the on the back burner or even abandoned.
23-May-2018 00:42:53
