Closed
Bug 85092
Opened 23 years ago
Closed 23 years ago
"site ... does not support encryption" is misleading (page info->security)
Categories
(Core Graveyard :: Security: UI, defect)
Tracking
(Not tracked)
VERIFIED
INVALID
People
(Reporter: jruderman, Assigned: ddrinan0264)
References
()
Details
Steps to reproduce: 1. Go to http://paydirect.yahoo.com/. 2. Open Page Info (Ctrl+I) and select the Security tab. Notice the text "The web site paydirect.yahoo.com does not support encryption for the page you are viewing." But if I go to https://paydirect.yahoo.com/, I get the same page, encrypted, so the server does support encryption for that page. Unless someone
Reporter | ||
Comment 1•23 years ago
|
||
Unless someone knows what that line of text was supposed to mean, it's probably best to just remove the line.
Comment 2•23 years ago
|
||
Marking invalid. The behavior is as expected. The http server is using the default port 80, and the https server is using the default ssl port of 443. So, you are actually reaching the same page, but sent by two different servers. So, http://paydirect.yahoo.com:80 actually does not support encryption.
Status: NEW → RESOLVED
Closed: 23 years ago
Resolution: --- → INVALID
Reporter | ||
Comment 4•23 years ago
|
||
I still think it's misleading. Many people think of http://www.ecount.com/ and https://www.ecount.com/ as being the same server, and think of "www.ecount.com" as the server for each of those URLs.
Comment 5•23 years ago
|
||
Mass changing Security:Crypto to PSM
Component: Security: Crypto → Client Library
Product: Browser → PSM
Version: other → 2.1
Comment 6•23 years ago
|
||
Mass changing Security:Crypto to PSM
Updated•8 years ago
|
Product: Core → Core Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•