Comments on: Mixed-Content Warnings == SSLFail! http://www.sslfail.com/2009/06/mixed-content-warnings-sslfail/ 1.2.840.113549.1.1 Thu, 01 Jul 2010 03:13:58 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Mike A. http://www.sslfail.com/2009/06/mixed-content-warnings-sslfail/comment-page-1/#comment-2660 Mike A. Fri, 26 Jun 2009 15:39:34 +0000 http://www.sslfail.com/?p=341#comment-2660 You have configured Firefox to not display a dialog box. See the following preference names in about:config. security.warn_viewing_mixed security.warn_viewing_mixed.show_once These options are in the security tab under 'Warning Messages'. The Firefox Security Warning dialog box for mixed content says, "You have requested an encrypted page that contains some unencrypted information. Information that you see or enter on this page could easily be read by a third party. Alert me whenever I'm about to view an encrypted page that contains some unencrypted information." Ironically, I get this message when viewing https://www.sslfail.com/ :) You have configured Firefox to not display a dialog box. See the following preference names in about:config.
security.warn_viewing_mixed
security.warn_viewing_mixed.show_once

These options are in the security tab under ‘Warning Messages’. The Firefox Security Warning dialog box for mixed content says, “You have requested an encrypted page that contains some unencrypted information. Information that you see or enter on this page could easily be read by a third party. Alert me whenever I’m about to view an encrypted page that contains some unencrypted information.”

Ironically, I get this message when viewing https://www.sslfail.com/ :)

]]> By: Andrew Yeomans http://www.sslfail.com/2009/06/mixed-content-warnings-sslfail/comment-page-1/#comment-2650 Andrew Yeomans Fri, 26 Jun 2009 09:25:14 +0000 http://www.sslfail.com/?p=341#comment-2650 "I don’t understand that logic" - the cynical response is "follow the revenue stream". You don't need to buy a cert to fix mixed content. “I don’t understand that logic” – the cynical response is “follow the revenue stream”. You don’t need to buy a cert to fix mixed content.

]]>