New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
As an onlooker (I don't deal with the ads here) I'd say this is an option worth investigating. I'm not sure what BSA's cut is, but it it's significant enough to warrant a small investment into a private system I'd say it's worth considering.
The BSA cut is 25%. Considering about 95% of our advertisers purchase ads directly from viewing LEB/LET and not the BSA shopping directory, it seems like taking this in house might be a good solution. If we cut out the 25% to BSA we can invest in prizes and other cool things with all the savings, too.
We'll look into the open source solution posted earlier and report back soon.
Nice to see you are moving along mate
Or you can do some contest for an in house ad system, the person that makes the best system (choosen by LET members) gets a prize? I think we've some potential devs here...
Why not enable SSL on specific pages only, like login and register?
That would solve the credentials issue, but session hijacking would be still possible.
Great choice I think.
It also gets round ad blockers if done in devious ways
+1.
Sorry, I couldn't resist.
The typo is intentional
In the browser thread, I said that I use the default browser on a variety of operating system platforms. That includes Internet Explorer, Safari, and several different browsers on Linux. I use Chrome for special purposes only, primarily when I must use Flash.
http://lowendtalk.com/discussion/36587/what-browser-do-you-use
Regarding this thread, the many posts above have covered most of what I would have said.
Nonetheless, please allow me to express a personal pet peeve: I feel very frustrated when I encounter web pages that have mixed http/https content. Different browsers handle it differently, but there is always some issue.
The mixed content issue is especially egregious on login pages where you are prompted to enter your username and password, yet the user can't be sure if they are secure. Sometimes the offending website includes a graphic of padlock icon in the login prompt box, which is good enough to trick naive, innocent users. The typical issue is caused by a mix of the secure login with an externally supplied advertisement on the same page.
One frequent offender is eBay, which was a pioneer and driving force behind extended validation certificates. Open a Mac Safari browser, go to http://www.half.ebay.com or http://www.half.com, then click on "Sign In" in the upper right corner. No icon, at least not on my Mac. I may not worry too much if my LET password is compromised, but it is a different situation with my eBay password.
I take the position that if a web page has mixed http and https content, then it is not secure.
@jbiloh you might want to check http://www.revive-adserver.com and http://openx.com for OpenSource Ad management and forget about the BSA 25% cut and lack of SSL
Projectwonderful.com
I agree that it would be worth rolling your own or using an open source ad management platform as that would both save on cost and AND allow you to use SSL. However until then, you should at least enable it on the login page like others have said. All you really have to do is modify your redirect to non-SSL rule to do the opposite on the signin page (http://www.lowendtalk.com/entry/signin), and then modify the "Sign In" button on the template to redirect to that page instead of popping up an embedded form. It's not that difficult.
We will look at doing this.
Thanks for the suggestion, we'll look into them.
One reason they could lower the price is they'll still be getting the same amount of money off of each ad. They can open it up to more people as well. So either way it would be a win win for them.