Tagged With "securities"

Reply

Re: Heartbleed SSL Vulnerability

Melanie ·
Hi Brian, Thanks for this update. I have a question related to Facebook, GMail and Yahoo - for folks who used those services to login to our Hoopla community, are they in any way endangering our community if they have not changed their passwords on those platforms? (For example, on FB, you can choose to always use https for your account; and you can also integrate your account with Hoopla; and FB was at risk due to Heartbleed.) I would like to post a reminder to our members to change those...
Reply

Re: Heartbleed SSL Vulnerability

Brian Lenz ·
Hi Melanie, I don't think they could be "endangering" your community unless they are admins on your site and those sites were exposed to the heartbleed vulnerability. Of course, if their Facebook/Google/Yahoo accounts were compromised, then they would be vulnerable on any third party system that they have linked to their social account (such as Hoop.la). Hoop.la has no inherent vulnerability by using those third party social login platforms, so it really comes down to whether or not a user's...
Comment

Re: New security options for Hoop.la Enterprise

Ted O'Neill ·
Update: we have now consolidated both of those add-ons into one new Premium Security option that includes even more security goodness, like: Redundant DoS/DDoS mitigation Isolated firewalls per customer Active cyber defense
Comment

Re: Free "Let's Encrypt" Security For Your Community

neil ·
How will the change to https affect existing links to our site (from other sites and search engines), and within our site?
Comment

Re: Free "Let's Encrypt" Security For Your Community

Rosemary O'Neill ·
Hi @neil , all of the links within Hoop.la, and external links TO your Hoop.la site, will just work magically. However, you would want to check your header, footer, any custom CSS, ad slots, images or videos from an external source, etc., for anything loading http:// and change it to https://.
Comment

Re: Free "Let's Encrypt" Security For Your Community

Rich Melvin ·
Neil, we run banner ads in our Hoopla forum served from an outfit called "Adpeeps.com." When we first made the Hoopla change to https, the banners did not appear. The browser would not display a mix of "secure" and "non-secure" content. All I had to do was go into the Adpeeps code and add the "s" where appropriate and all was OK. Adpeeps now generates code that contains "https" so the problem has solved itself on both ends. External LINKS appeared just fine, even though the link was going to...
Comment

Re: Free "Let's Encrypt" Security For Your Community

neil ·
Thanks Rich and Rosemary. We have a ton of links embedded by users in their posts. Are you saying all those would need to be changed ? <- 1st time ever using the exploding sausage/balloon
Comment

Re: Free "Let's Encrypt" Security For Your Community

Brian Lenz ·
@neil , the process to enable TLS/SSL will automatically update your community URLs (including embedded image attachments, etc.) to use SSL. Any external URLs will not be updated, however, as Hoop.la can't make any guarantees about whether those external data sources support HTTPS or not. Note that this would only be an issue for embedded content; any external URL links wouldn't be an issue. Does that help?
Comment

Re: Free "Let's Encrypt" Security For Your Community

neil ·
Thanks for clarifying, Brian. Our "embedded" content consists almost entirely of https youtube (iframe) so we should be okay. What's the next step for authorizing and getting this done?
Comment

Re: Free "Let's Encrypt" Security For Your Community

Brian Lenz ·
@neil , just open a private support topic requesting the change!
Reply

Re: Re: Fixing Critical SEO Issues On Hoop.la, Etc (See Links )

Ted O'Neill ·
Hi Lhisa- In today's software update, we added alt attributes to all images. More details on today's feature-packed software update: https://www.socialstrata.com/b...otal-control-release
Reply

Re: Re: Fixing Critical SEO Issues On Hoop.la, Etc (See Links )

Brian Lenz ·
Hi Lhisa, We do have a few changes in the pipeline that may improve SEO a bit. We have plans to add support for more structured content on every page (including the H1 tag mentioned by freeseoscorecard.com). We also are planning on making sure that all images have alt attributes on them. We don't have any plans to allow support for directly modifying server-side assets such as JavaScript files. Those are all fully optimized, minified, and gzipped. Note that you can also currently control the...
Reply

Re: Re: Fixing Critical SEO Issues On Hoop.la, Etc (See Links )

Ted O'Neill ·
Hoop.la offers much more structured content in the new Hoop.la 2.0. In addition to using H1, H2, H3, H4 tags, we also implemented many scheme elements. More on Hoop.la 2.0: https://www.socialstrata.com/blog/hoop-la-2-0-is-here
Blog Post

Control Freaks Unite

Rosemary O'Neill ·
Yes, I'll admit it right now.  I'm a control freak.  And when it comes to my social accounts all over the web, it's intensified by a factor of 10.  Do you consider who's reading your blips, blogs, and profiles you've left in various...
Blog Post

Free "Let's Encrypt" Security For Your Community

Paulo Jacob ·
Here at Social Strata, we are always looking for ways to increase security for our customer communities, and today we are announcing a new offering to allow our customers to use HTTPS (i.e. "SSL") at no conet
Blog Post

New security options for Hoop.la Enterprise

Ted O'Neill ·
We've added two new add-ons for Hoop.la Enterprise - Total Data Encryption and HIPAA Compliance - for regulated industry communities.
Blog Post

The Credit Card Security Release

Brian Lenz ·
Over the past few months, we have focused on improving the overall security offerings within Hoop.la. Hoop.la is already a highly secure platform, but we wanted to offer an even higher level of assurance and compliance for the ultra-security conscious customer. This has included a new Premium Security add-on that offers many new, advanced security features such as total data encryption of all data at-rest, anti-virus/anti-malware, DoS/DDoS mitigation, IP Reputation Management, Intrusion...
Blog Post

The Two-Factor Authentication Release

Ted O'Neill ·
We rolled out a new software release today that adds support for two-factor authentication, among other things.
Announcement

Heartbleed SSL Vulnerability

Brian Lenz ·
We wanted to provide a formal update regarding the recently discovered Heartbleed SSL vulnerability. The issue is a bug in the widely-used OpenSSL library that enables an attacker to gain access to private keys that allow the attacker to steal data...
Issue

Re: Fixing Critical SEO Issues On Hoop.la, Etc (See Links )

Lhisa ·
I found 2 useful tools that might interest the community. Note the links. http://freeseoscorecard.com & http://seositecheckup.com SEO & other site performance issues have been a major concern for folks & I’m glad that hoop.la have already addressed some of it with the new ninja release & other tweaks, however a bit more needs to be done as I’ve learned from running the tools, notably the site checkup. If you run my site ferrelux.com, I score a 27, which is up 2 points from a...
Blog Post

Facebook Integration Change

Jonmark Weber ·
Facebook has recently changed their OAuth authentication requirements by enabling “ Strict Mode ” for all consumers. What this means, is that if your community is using Facebook as a linked Social Network, then that integration with Facebook will no longer work until you have met their requirements. For all site owners who have not integrated Facebook as a Social Network for your members, please allow your eyes to haze over and move on with your day. Perhaps throw on some music and get a...
Blog Post

HTTPS Coming Soon To All Hoop.la Communities

Paulo Jacob ·
Here at Social Strata, the security of our customers and their visitors is paramount. Last October we published a blog post about our offer of free Let's Encrypt certificates so that our customers can add TLS (previously known as SSL) to their Hoop.la communities, as there are several security advantages in doing so. The response was amazing, with a significant amount of customers taking that offer. Now, starting June 5th, we are proactively moving all Hoop.la communities to HTTPS in order...
Comment

Re: HTTPS Coming Soon To All Hoop.la Communities

Paulo Jacob ·
Hi Paul, You are correct. All requests will be redirected automatically to a secure connection. If you enter http://www.socialstrata.com on your browser, it will redirect you to a secure connection. Incoming links from other sites work the same way.
Comment

Re: HTTPS Coming Soon To All Hoop.la Communities

Paul Heymont ·
If I understand this correctly, all the items that are presently on our site (TravelGumbo.com) with http:// will automatically convert to https:// but it will not change external links embedded in blogs, etc. If I am correct, what will happen if someone clicks on a Tweet, or a link somewhere else, that contains http://travelgumbo.com/blog/whatever ? Will it automatically route to https://travelgumbo.comc/blog/whatever ? If not, what can we do to make that happen?
Comment

Re: HTTPS Coming Soon To All Hoop.la Communities

Paul Heymont ·
Thanks! 71 Lefferts Avenue Brooklyn NY 11225 Fax: 347-757-3097 Mobile: 917-817-0521
×
×
×
×