Administered by:
Does anyone have any resources they like for explaining the importance of having websites run over https to non-technical people in small charities?
Bonus: can anyone recommend the NCSC's WebCheck? It seems quite good?
https://www.ncsc.gov.uk/information/web-check
Edit: answered! https://nonprofitsdecoded.com/ssl-security-certificate-nonprofit-website/ is just what I needed, gonna ditch thinking about the NCSC stuff.
@agvbergin Are any of these charities working with vulnerable populations? Oversurveilled populations? Those would be easier to explain to.
@dsalo Yes, and I tried to explain that already but it didn't work unfortunately.
@agvbergin Okay. What did you say, and what were they hearing?
@dsalo Oh, they just totally ignored me. Thank you for trying to help though, I appreciate it!
Kinda looking for an authoritative source that I can send rather than continuing to explain it myself as I don't have standing with them. I thought the UK National Cyber Security Centre might have something useful but everything is too technical and a bit too scary I think.
@agvbergin Gotcha. Let me see what I can dig up!
This isn't bad, pitched at close to their level, but may not ping their "authoritative" meter: https://www.howtogeek.com/181767/htg-explains-what-is-https-and-why-should-i-care/
This may feel more authoritative, but is a bit techier: https://www.ssltrust.ca/learning/ssl/why-use-https
Currently hunting for stuff pitched to nonprofits...
@agvbergin This is good: https://nonprofitsdecoded.com/ssl-security-certificate-nonprofit-website/
EFF also discusses it, but on a page with like a gazillion other things, so overwhelm is a risk: https://www.eff.org/pages/online-privacy-nonprofits?language=en#server
(she/her) @agvbergin@mastodon.me.uk@dsalo Ah, the nonprofits decoded info is perfect! thank you so much