homepage Welcome to WebmasterWorld Guest from 54.211.213.10
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Pubcon Platinum Sponsor 2014
Visit PubCon.com
Home / Forums Index / Browsers / Firefox Browser Usage and Support
Forum Library, Charter, Moderators: incrediBILL

Firefox Browser Usage and Support Forum

    
Are you delivering http content over https?
Not anymore. Get ready now.
coopster




msg:4565281
 4:22 pm on Apr 16, 2013 (gmt 0)


Security & Privacy


Non-SSL active content on SSL pages is blocked by default

Bug 834836 Turn on pref to block mixed active content

Firefox 18 introduced preferences to block loading content from non-SSL (http) sites on SSL (https) pages. One of those preferences will now be enabled by default in order to enhance user security. That means insecure scripts, stylesheets, plug-in contents, inline frames, Web fonts and WebSockets are blocked on secure pages, and a notification is displayed instead. It will not block "display content" like images, videos or audio.


https://developer.mozilla.org/en-US/docs/Site_Compatibility_for_Firefox_23

 

dstiles




msg:4565380
 8:04 pm on Apr 16, 2013 (gmt 0)

It has long been the case that the more responsible browsers (including firefox) warned about mixed content. It has never been good to serve (eg) non-SSL images with an SSL page. I've had that warning enabled for years in firefox and only occasionally accept mixed content if I know the site well.

In any case, if a site is properly designed it should never serve mixed content.

It's good that FF now defaults to that mode but I wonder if they force it upon existing users after an update.

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Browsers / Firefox Browser Usage and Support
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved