BajaNomad

Who has not been able to post, using Chrome?

David K - 10-11-2023 at 10:30 AM

The past 40-some-hours, a new issue has prevented Chrome browsers from posting (at least it has for me).

Basically, a warning about insecure content pops up, and when you click to post what you typed a second warning appears, but you click 'send anyway'... and that still won't post your reply or message and it is lost.

I asked Doug for help and he sent me two links to follow... one worked for me and here are the steps, easily listed (at least easy for me to follow):

Here are the steps to allow Nomads on Chrome to post and reply on Nomad, once again:

On your browser, click the three vertical dots at the far right.

Click: Settings

Click: Privacy and security

Click: Site settings

Click: Additional content settings

Click: Insecure content

Go to: Allowed to show insecure content

and ADD:
https://forums.bajanomad.com

JZ - 10-11-2023 at 10:31 AM

Firefox for the win.

stillnbaja - 10-11-2023 at 11:06 AM

working okay from chromebook.....

BornFisher - 10-11-2023 at 11:17 AM

chromebook test..... works for me

[Edited on 10-11-2023 by BornFisher]

BajaNomad - 10-11-2023 at 11:41 AM

Quote: Originally posted by David K  

...and ADD:
https://forums.bajanomad.com


That's the secure SSL certificate link (using HTTPS). Which if you take a peek at that link, there is a certificate installed. I'm still uncertain how easily the coding in the website navigation (and the form code - to post/update info that's submitted to the website) can be updated to actually *use* the SSL certificate.

I believe David's suggestion here is to enter the *non-SSL* URL:
http://forums.bajanomad.com

(or maybe simply forums.bajanomad.com ??)

fyi





[Edited on 10-11-2023 by BajaNomad]

David K - 10-11-2023 at 12:16 PM

Quote: Originally posted by BajaNomad  
Quote: Originally posted by David K  

...and ADD:
https://forums.bajanomad.com


That's the secure SSL certificate link (using HTTPS). Which if you take a peek at that link, there is a certificate installed. I'm still uncertain how easily the coding in the website navigation (and the form code - to post/update info that's submitted to the website) can be updated to actually *use* the SSL certificate.

I believe David's suggestion here is to enter the *non-SSL* URL:
http://forums.bajanomad.com

(or maybe simply forums.bajanomad.com ??)

fyi





[Edited on 10-11-2023 by BajaNomad]


OK, but my link to Nomad was aleady https when this happened.

David K - 10-12-2023 at 07:39 AM

Thank you, lencho, for your observations.

I was still curious to know how many Nomads were unable to post or reply because of this. There are already so few posting Nomads that any technical issue (such as the one I experienced) is just another nail in the coffin. Old geezers (as I have recently joined that group, I guess) have no time for such difficulties!

There is a lot of value to this forum, with photos, its categories, for review or research... as well as the friendly chatting or debating, of course!

4x4abc - 10-12-2023 at 08:28 AM

I have been unable to post or to respond with Chrome for a couple of months.
Used Firefox when I had something to say.

pauldavidmena - 10-12-2023 at 11:30 AM

No problems using Chrome on Ubuntu Linux. I do notice that this particular URL appears to be insecure (http instead of https).

I've run into some issues trying to apply certificates to Apache running in a docker container, but I don't believe this situation applies to BajaNomad.

mtgoat666 - 10-12-2023 at 11:46 AM

Quote: Originally posted by David K  
Thank you, lencho, for your observations.

I was still curious to know how many Nomads were unable to post or reply because of this.


works fine for me on chrome on windows and ios. my browser seems be going to the unsecure, not the https


AKgringo - 10-12-2023 at 02:43 PM

I am using Microsoft Edge on my laptop running Windows 11. I have no problem accessing this forum, but it logs on with a "not secure" warning.

Sorry, but I will not be using this site to share financial or personal information with any of you!

Cliffy - 10-13-2023 at 03:50 PM

Trying David Ks way of making BN work for me after weeks of denied access

Let's see what happens "click"

Udo - 10-13-2023 at 03:52 PM

I am not sure what happened, but I followed David's instructions and still did the same thing.
So, I changed the https to http, and all appears to be normal on Chrome.

Cliffy - 10-13-2023 at 03:52 PM

OK !!! It now seems to work

Could there have been an update to Chrome that kicked in the denial?

I knew eventually someone here would come out with a solution

Udo - 10-13-2023 at 03:53 PM

Quote: Originally posted by AKgringo  
I am using Microsoft Edge on my laptop running Windows 11. I have no problem accessing this forum, but it logs on with a "not secure" warning.

Sorry, but I will not be using this site to share financial or personal information with any of you!


Not that you ever did!

David K - 10-13-2023 at 03:59 PM

I suspected that it was more widespread!

Glad that Cliffy and Udo saw my post and are back here again...
With so few 'Today's Posts' anymore... It may be surprising to some who thought Nomad was on it last breath.
Instead, Chrome (or Nomad?) played a trick on our ability to post.

Let's have road reports, weather reports, fishing reports, and camping reports once again!

Viva Baja Nomad!

surabi - 10-15-2023 at 10:42 AM

Yes, I have had the same issue using Chrome. However, it only started happening 2 or 3 days ago, and has nothing to do with a Chrome update, as I haven't downloaded any Chrome updates lately.

And I have always gotten a message that this site isn't secure, although the message only warned me of that, it didn't prevent me from posting.

[Edited on 10-15-2023 by surabi]

David K - 10-15-2023 at 11:08 AM

Quote: Originally posted by surabi  
Yes, I have had the same issue using Chrome. However, it only started happening 2 or 3 days ago, and has nothing to do with a Chrome update, as I haven't downloaded any Chrome updates lately.

And I have always gotten a message that this site isn't secure, although the message only warned me of that, it didn't prevent me from posting.

[Edited on 10-15-2023 by surabi]


Same here, only a few days ago was the day of not being able to post or reply. I also did not do the update. I haven't seen any 'not secure' messages or just ignored them, perhaps.

BajaNomad - 10-16-2023 at 01:18 AM

Quote: Originally posted by Cliffy  


Could there have been an update to Chrome that kicked in the denial?



Correct.

BajaNomad - 10-16-2023 at 02:35 AM

Quote: Originally posted by lencho  
Quote: Originally posted by BajaNomad  
I'm still uncertain how easily the coding in the website navigation (and the form code - to post/update info that's submitted to the website) can be updated to actually *use* the SSL certificate.

Doug, it doesn't look like the form HTML has absolute URL's including HTTP://, so it may be as easy as changing one line in the HEAD section; right now you have:

base href="http://forums.bajanomad.com/post.php...

It'd be worth a try changing that http: to https: to see what happens.



Per our communication previously, I believe this is what I indicated I'd have to go looking for (it's not just an HTML change... have to dive into PHP include files, etc).

I've updated the site to now force all traffic to use HTTPS instead of HTTP. Let me know if you're seeing any security warnings (perhaps from avatar images??), etc. Thank you.

BajaNomad - 10-16-2023 at 02:47 AM

Quote: Originally posted by BajaNomad  

(perhaps from avatar images??)


I'm seeing the site scripting right now disallows one from saving an https URL in the avatar field (the URL just disappears after clicking save). Will have to work on that some other time soon.

fyi

AKgringo - 10-16-2023 at 08:07 AM

I do not see the "not secure" notice this morning. Thanks for your efforts!

surabi - 10-17-2023 at 09:11 PM

Yes, working now for me. No more "site insecure" warnings or blocked posting.


pauldavidmena - 10-18-2023 at 12:30 PM

I'm using Chrome on Ubuntu Linux and recently discovered that I can't post images - even though they're hosted on my own website. This has only been the case for the past 2 days.

I've also noticed that I'm no longer seeing my avatar. :?:

[Edited on 10-18-2023 by pauldavidmena]

pauldavidmena - 10-18-2023 at 01:41 PM

Quote: Originally posted by lencho  
Quote: Originally posted by pauldavidmena  
I'm using Chrome on Ubuntu Linux and recently discovered that I can't post images - even though they're hosted on my own website.

Wild guess: your site isn't serving those images via https:// ?


That is correct. My website is running Debian 7, which is too old to support the free certificate service I want to use. Upgrading was on my post-retirement to-do list, and then I semi-un-retired...

I suppose I could use the suggested postimages.org provider instead.

[Edited on 10-19-2023 by pauldavidmena]

David K - 10-18-2023 at 02:25 PM

Quote: Originally posted by pauldavidmena  
Quote: Originally posted by lencho  
Quote: Originally posted by pauldavidmena  
I'm using Chrome on Ubuntu Linux and recently discovered that I can't post images - even though they're hosted on my own website.

Wild guess: your site isn't serving those images via https:// ?


That is correct. My website is running Debian 7, which is too old to support the free certificate service I want to use. Upgrading was on my post-retirement to-do list, and then I semi-un-retired...

I suppose I could use the suggested postimages.com provider instead.


It is .org (just an fyi).

Hook - 10-18-2023 at 07:08 PM

Suddenly, my MLB.com bookmarks are saying,

mlb.mlb.com does not support HTTPS requests

The bookmark has been working for YEARS. Using Chrome.

BornFisher - 10-18-2023 at 09:00 PM

Quote: Originally posted by Hook  
Suddenly, my MLB.com bookmarks are saying,

mlb.mlb.com does not support HTTPS requests

The bookmark has been working for YEARS. Using Chrome.


MLB.com works just fine on my Chromebook. But my daily email from MLB stopped about a month ago. No idea why, but I don`t think it`s a Chrome issue.

Hook - 10-19-2023 at 06:07 AM

I've typed in MLB.com into Chrome and re-bookmarked it. Works now.

I guess it was something with the old bookmark.

Go Rangers!!! Or D-Backs! Anybody but the Astros!!!

I could live with Philly winning it, too. What amazing fans they have.

[Edited on 10-19-2023 by Hook]

pauldavidmena - 10-19-2023 at 06:40 AM

Quote: Originally posted by David K  
Quote: Originally posted by pauldavidmena  
Quote: Originally posted by lencho  
Quote: Originally posted by pauldavidmena  
I'm using Chrome on Ubuntu Linux and recently discovered that I can't post images - even though they're hosted on my own website.

Wild guess: your site isn't serving those images via https:// ?


That is correct. My website is running Debian 7, which is too old to support the free certificate service I want to use. Upgrading was on my post-retirement to-do list, and then I semi-un-retired...

I suppose I could use the suggested postimages.com provider instead.


It is .org (just an fyi).


DOH! I just corrected it in my post. Thank you!

pauldavidmena - 10-19-2023 at 07:54 AM

I was able to upload an image of Hurricane Norma to postimages.org and share it on a BN thread. I also uploaded my avatar, but it's not showing up yet. At least it's no longer a broken link. :?:



Is there a new size restriction?

David K - 10-19-2023 at 10:42 AM

Quote: Originally posted by pauldavidmena  
I was able to upload an image of Hurricane Norma to postimages.org and share it on a BN thread. I also uploaded my avatar, but it's not showing up yet. At least it's no longer a broken link. :?:



Is there a new size restriction?


In the FAQ link on the top of the Nomad page:

How do I get my own picture (avatar) under my name?
Again in your profile there is a place for an 'Avatar' and avatar is the image under your name. Check with your Admin about the size of your avatar, it's usually considered common courtesy to use one under 150 pixels wide.



This is 150 pixels wide, so it will work.
Go to your User Control Panel then go to Edit Profile and see this, where you enter the photo link:
Avatar URL:

pauldavidmena - 10-19-2023 at 01:10 PM

I've updated the Avatar field with the postimages.org URL multiple times, but when I save my work by selecting the "Edit Profile" button, the space for the URL is blank.


pauldavidmena - 10-19-2023 at 02:46 PM

To put some icing on this upside-down cake, I uploaded a GIF from my website to postimages.org and tried using it for my avatar, and it inexplicably worked. :?:

David K - 10-19-2023 at 03:53 PM

That blank place in the url line is where you paste the url. I like the one you got to work, however!

BajaNomad - 10-19-2023 at 04:18 PM

Quote: Originally posted by BajaNomad  
Quote: Originally posted by BajaNomad  

(perhaps from avatar images??)


I'm seeing the site scripting right now disallows one from saving an https URL in the avatar field (the URL just disappears after clicking save). Will have to work on that some other time soon.

fyi

pauldavidmena - 10-22-2023 at 09:05 AM

Quote: Originally posted by lencho  
Quote: Originally posted by pauldavidmena  
Quote: Originally posted by lencho  
Wild guess: your site isn't serving those images via https:// ?
That is correct. My website is running Debian 7, which is too old to support the free certificate service I want to use.
namecheap.com has low-priced certificates that might take care of your need. :cool:


I just noticed that SSL certificates from namecheap.com are considerably less expensive than if I were to purchase them from my current DNS hosting service (GoDaddy). The catch is that they don't guarantee end-to-end SSL functionality unless you also use them for DNS. Normally this would be a dealbreaker, but I've been looking for less expensive alternatives to GoDaddy, and this just might be the incentive I need.

BajaNomad - 10-24-2023 at 12:03 AM

Quote: Originally posted by pauldavidmena  
Quote: Originally posted by lencho  
Quote: Originally posted by pauldavidmena  
Quote: Originally posted by lencho  
Wild guess: your site isn't serving those images via https:// ?
That is correct. My website is running Debian 7, which is too old to support the free certificate service I want to use.
namecheap.com has low-priced certificates that might take care of your need. :cool:


I just noticed that SSL certificates from namecheap.com are considerably less expensive than if I were to purchase them from my current DNS hosting service (GoDaddy). The catch is that they don't guarantee end-to-end SSL functionality unless you also use them for DNS. Normally this would be a dealbreaker, but I've been looking for less expensive alternatives to GoDaddy, and this just might be the incentive I need.


Run by Namecheap:
https://www.ssls.com

Free 90-day certificates here, if/where/when handy:
https://zerossl.com

If hosting on a cPanel system (a "normal" one, I've seen where GoDaddy often removes this feature - and others) there is AutoSSL that renews the free certificates automatically:
https://blog.cpanel.com/autossl/




[Edited on 10-24-2023 by BajaNomad]

pauldavidmena - 10-24-2023 at 05:07 AM

Quote: Originally posted by BajaNomad  


Run by Namecheap:
https://www.ssls.com

Free 90-day certificates here, if/where/when handy:
https://zerossl.com

If hosting on a cPanel system (a "normal" one, I've seen where GoDaddy often removes this feature - and others) there is AutoSSL that renews the free certificates automatically:
https://blog.cpanel.com/autossl/

[Edited on 10-24-2023 by BajaNomad]


Thank you for the tips! I'm very happy with DigitalOcean as a web host, as they pretty much let me do what I want with my humble VM at a very low cost. I put myself in this position by not updating more regularly, and now I'm running into the inevitable compatibility issues with old versions of Apache, MySQL, etc.

I do believe that I can ditch GoDaddy without having to change my underlying infrastructure until I'm ready, so all of the above is very helpful. Thanks again!

Paul