All users were logged out of Bugzilla on October 13th, 2018
1.) With all SSL prefs on, visit the above low grade encryption site. 2.) Note the warning of low-grade encryption. 3.) Click on another secure link, such as "Secure Site" in the upper left, or visit https://www.verisign.com. What happens: A dialog box appears stating that I am entering a secure site. What is expected: No warning should be necessary, since I was coming from a secure site.
Well, if "low security" deserves an extra warning, I thought this means "a low security site is not the same as a secure site". How would a user ever know, that he is no longer surfing a low security site, but has entered a high security site? When I worked on bug 130949, I explicitly implemented this behaviour. Therefore I think this is not a bug, but rather we should discuss what behaviour we want, because when I worked on bug 130949, I did not have a reference what the intended behaviour is, but jused my own judgement :)
Marking works for me. Kaie's reasoning is OK with me.
Status: NEW → RESOLVED
Last Resolved: 17 years ago
Resolution: --- → WORKSFORME
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.