Closed
Bug 1066873
Opened 10 years ago
Closed 9 years ago
Mixed content loaded despite security.mixed_content.block_display_content is set to TRUE
Categories
(Core :: DOM: Security, defect)
Tracking
()
RESOLVED
DUPLICATE
of bug 1201767
People
(Reporter: kuroptev, Unassigned)
References
(Blocks 1 open bug)
Details
(Whiteboard: [domsecurity-backlog])
Attachments
(1 file)
|
247.29 KB,
image/png
|
Details |
mixedroem.png (Screenshot)
User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:32.0) Gecko/20100101 Firefox/32.0
Build ID: 20140911151253
Steps to reproduce:
Set security.mixed_content.block_display_content = TRUE
visit https://roem.ru/
Actual results:
Mixed passive/display content is loaded (as according to Dev Console log). The loaded mixed content is loaded from within Google DubleClick code.
Expected results:
Mixed content should be blocked.
|
||
Comment 1•9 years ago
|
||
Tanvi, if that is true, we should probably find someone to fix that. What do you think?
Component: Security → DOM: Security
Flags: needinfo?(tanvi)
Whiteboard: [domsecurity-backlog]
|
|
||
Updated•9 years ago
|
Blocks: MixedContentBlocker
|
||
Comment 3•9 years ago
|
||
I don't see any mixed content on https://roem.ru/. When I visit my test page https://people.mozilla.com/~tvyas/mixeddisplay.html, mixed display content is loaded when the pref is set to false and blocked when it is set to true. Looking at the attached picture, this looks like a duplicate of this webconsole bug - https://bugzilla.mozilla.org/show_bug.cgi?id=1201767. The Net panel of the webconsole does not always properly classify loads as regular vs mixed content. The security panel does. The Net panel needs to be fixed or mixed content messages have to be removed form the Net Panel.
Status: UNCONFIRMED → RESOLVED
Closed: 9 years ago
Flags: needinfo?(tanvi)
Resolution: --- → DUPLICATE
You need to log in
before you can comment on or make changes to this bug.
Description
•