Closed
Bug 302634
Opened 19 years ago
Closed 19 years ago
Strange behavior of the "leaving an unencrypted page" security warning
Categories
(SeaMonkey :: General, defect)
Tracking
(Not tracked)
People
(Reporter: rgabriel1977, Unassigned)
Details
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8b2) Gecko/20050220 Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8b2) Gecko/20050220 When navigating from an encrypted page to an unencrypted one, a security warning is displayed. But this warning contains only an "OK" button and so the user has no other option than to continue! Even if you cancel the warning by the Esc key, the navigation continues to the target (unencrypted) page. I consider this as an security risk! Note: The other warnings (e.g. opening an encrypted page) behave the same way, but there's no problem - they have mainly informational meaning. But leaving an encrypted page could be a security risk and the user should be able to block such an action! [Maybe the warning at showing a page with encrypted/unencrypted mix should also behave this way...] Reproducible: Always Steps to Reproduce: 1. Make sure the "Leaving a page that supports encryption" warning is turned on in Preferences / Privacy & Security / SSL / SSL warnings 2. Open some HTTPS secured page 3. Navigate to some unencrypted (HTTP page) Actual Results: The warning will appear but there's no way to block the action! I always feel powerless at this point... Expected Results: The warning should contain buttons Yes and No (or OK and Cancel) to let the user decide if he/she allows the action or not. If No (Cancel) is pressed, the browser should stay on the current encrypted page.
|
||
Comment 2•19 years ago
|
||
*** This bug has been marked as a duplicate of 62178 ***
Status: UNCONFIRMED → RESOLVED
Closed: 19 years ago
Resolution: --- → DUPLICATE
You need to log in
before you can comment on or make changes to this bug.
Description
•