Squarespace–Support SSL Already

So one day my wife wanted a website to highlight her award-winning pottery. She finds WordPress a bit cumbersome to use and after looking at a number of hosting sites settled on Squarespace. After purchasing a site there, I registered a domain name for the site and we sat down and took a look at what needed to be done to point the domain to the site.

And that’s where things got weird. Because I figured while I was reading Squarespace’s documentation about where to point the domain DNS, I’d also see what the process was for adding an SSL certificate. And the answer was shocking–there is no option to for individuals to use SSL on Squarespace sites.

When you login to Squarespace or set up an e-commerce area, Squarespace sends you to a Squarespace.com area that use Squarespace’s SSL certificate. But those are the only times that users will see SSL related to a site they have set up. As Squarespace explains (emphasis added),

Some areas of Squarespace sites are protected by SSL, including checkout for Commerce transactions and wherever you log into your site. However, SSL isn’t currently available for other pages.

We don’t offer the ability to install custom SSL certificates at this time.

This is crazy, and potentially dangerous. Without SSL, browsing Squarespace sites is subject to snooping by third parties. Attackers could potentially perform man-in-the-middle style attacks by intercepting the non-encrypted traffic and injecting malicious code.

One of Squarespace’s competitors, WordPress.com not only supports SSL for the millions of blogs/sites it hosts, but just announced it was using Let’s Encrypt to offer free SSL to every single custom domain on its network.

That Squarespace continues to expose both its visitors and its customers to these sort of risks is inexcusable.

Social Autopsy’s Confused View of Hate Speech

In a response to questions on the Kickstarter page for doxing platform Social Autopsy, someone associated with the project outlines what the criteria for inclusion in the project will be:

I just want to stress we are only publishing hate speech as defined by the law. “hate speech is any speech, gesture or conduct, writing, or display which is forbidden because it may incite violence or prejudicial action against or by a protected individual or group, or because it disparages or intimidates a protected individual or group.” Hate speech isn’t saying “I hate the jets”, hate speech is saying “Any person who supports the Jets I am going to have them lynched because they are a dirty explicits.” Big difference between having a difference in opinion and actually threatening someone.

For fuck’s sake. That is not a legal definition of hate speech, but rather is copy/pasted from the Wikipedia entry on hate speech (emphasis added),

In the law of some countries, hate speech is any speech, gesture or conduct, writing, or display which is forbidden because it may incite violence or prejudicial action against or by a protected individual or group, or because it disparages or intimidates a protected individual or group.

I have to wonder how far the idiots behind this site will go. In Saudi Arabia, for example, it is “hate speech” to criticize Islam. Will Social Autopsy be doxing Saudi Arabian citizens who disparage their country’s official religion online?

Lance Lewis, Space Detective

According to Wikipedia, Lance Lewis “is a detective from the 22nd century. With his girlfriend Marna, Lance would solve mysteries involving Martians, rocket ships, and rayguns.”

Lance Lewis’s adventures debuted in Nedor’s Mystery Comics, but later moved to Startling Comics, beginning with issue #44 (March 1947). No credits were given for the debut story; later stories were written and drawn by Graham Ingels and Bob Oksner Lance Lewis’s last Golden Age appearance was in Startling Comics #53 (September 1948).

Startling Comics - Issue 47

Startling Comics - Issue 49

Startling Comics - Issue 50

Startling Comics - Issue 51

Startling Comics - Issue 52

Startling Comics - Issue 53