As Google Chrome is the browser of choice for the majority of Internet users, Google is a very influential name with shaping the future of browsers in general. They throw their weight around, pressuring web developers to comply. All non-encrypted webpages are categorized by Chrome as "not secure".
It does not mean that the user will get hacked, it just meant that the exchange of data from the user to the webserver and back is not encrypted. Here in Runescape, pages for RSOF are http only, hence the Chrome warning. I've warned Jagex about this issue early on, as Google made a public announcement about it a year prior to the implementation.
Cheesaid: idk what that means but I assume it has to do with this? You'll see this while browsing the forums and..Cheesaid: .. this when you begin to enter information into a form (such as a reply or a new thread).Cheesaid: so why can't it be fixed exactly?It's not that it can't be fixed, but it's a process that each module of the site is going through being changed in stages. Anything new on the site goes up with HTTPS, but the older stuff needs to be migrated over. The forums haven't been gotten to yet.
As mentioned already, there's no danger with the forums being insecure as anything we enter is posted publically anyway and the login is secured so there's no need for urgency with this.
this is a simple nginx rule for a quick temp fix, pretty surprised nothings happened yet
fyi while you may think http is not dangerous I am personally accessing the forums via a country where it is commonplace to inject scripts into unencrypted pages. so yes encryption is very desired for me@@@