Monster cookie misstatement

The FAQ page of the parentteacheronline.com.au site confidently asserts that

We do not use cookies at all on our PTO site.

Oh really? Chrome inspector begs to differ.
This level of misstatement give me no level of confidence in one of the other assertions on their FAQ …

PTO maintains the highest level of Internet Security available. This means that any data entered into the system is as secure as information held by banks and large businesses.

 

Now secure

Today I’ve done something I’ve been meaning to do for quite some time … to make this website use HTTPS (a.k.a. SSL/TLS). That means that all traffic to and from this website is now going over an encrypted connection, and web browsers will indicate this with a friendly green padlock in the address bar.


The final impetus for getting this done was Troy Hunt’s blog about how “Life Is About to Get a Whole Lot Harder for Websites Without HTTPS”. Soon, any website page that has a text input box will start displaying an “insecure” warning to users who load the page over old fashioned HTTP.

So how hard was it to get HTTPS enabled on this WordPress site? In short, not at all. Thanks to a collaboration between Comodo and cPanel I didn’t have to obtain or install SSL certificates – it was there waiting for me to use. All I needed to do was install and activate the Really Simple SSL WordPress plugin. That was it. Job done.