Closed Bug 85092 Opened 23 years ago Closed 23 years ago

"site ... does not support encryption" is misleading (page info->security)

Categories

(Core Graveyard :: Security: UI, defect)

Product:
Core Graveyard
Component:
Security: UI
Version:
1.0 Branch
Platform:
x86
Windows 98
Type:
defect
Priority:
Not set
Severity:
minor

Tracking

(Not tracked)

Status:
VERIFIED INVALID

People

(Reporter: jruderman, Assigned: ddrinan0264)

References

(
URL
)

Details

Steps to reproduce:
1. Go to http://paydirect.yahoo.com/.
2. Open Page Info (Ctrl+I) and select the Security tab.

Notice the text "The web site paydirect.yahoo.com does not support encryption 
for the page you are viewing."  But if I go to https://paydirect.yahoo.com/, I 
get the same page, encrypted, so the server does support encryption for that 
page.

Unless someone
Unless someone knows what that line of text was supposed to mean, it's probably 
best to just remove the line.
Marking invalid. The behavior is as expected. The http server is using the 
default port 80, and the https server is using the default ssl port of 443. So, 
you are actually reaching the same page, but sent by two different servers. So, 
http://paydirect.yahoo.com:80 actually does not support encryption.
Status: NEW → RESOLVED
Closed: 23 years ago
Resolution: --- → INVALID
Verified invalid.
Status: RESOLVED → VERIFIED
I still think it's misleading.  Many people think of http://www.ecount.com/ and
https://www.ecount.com/ as being the same server, and think of "www.ecount.com"
as the server for each of those URLs.
Mass changing Security:Crypto to PSM
Component: Security: Crypto → Client Library
Product: Browser → PSM
Version: other → 2.1
Mass changing Security:Crypto to PSM
Product: PSM → Core
Version: psm2.1 → 1.0 Branch
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.