If you think a bug might affect users in the 57 release, please set the correct tracking and status flags for Release Management.

No warning when viewing an SSL page with insecure content

VERIFIED DUPLICATE of bug 82437

Status

()

Core
Document Navigation
P3
normal
VERIFIED DUPLICATE of bug 82437
17 years ago
16 years ago

People

(Reporter: John Unruh, Assigned: Conrad Carlen (not reading bugmail))

Tracking

(Depends on: 1 bug)

Trunk
mozilla0.9.3
Points:
---
Dependency tree / graph

Firefox Tracking Flags

(Not tracked)

Details

(URL)

(Reporter)

Description

17 years ago
1.) Under Privacy/Security > SSL prefs, check "Viewing a page with 
an encryped/unencrypted mix.
2.) Visit the above in-house site.
What is expected: A warning that you are visiting a page with an 
encryped/unencrypted mix. Also, the lock icon should be shown as mixed.
What happens: No warning, other than the warning that I am entering a secure 
site.
(Reporter)

Comment 1

17 years ago
Milestone 2.0
OS: Windows NT → All
Priority: -- → P3
Hardware: PC → All
Target Milestone: --- → 2.0

Comment 2

17 years ago
nsSecureBrowserUI is not getting OnStateChange notifications for inline images.  
This is a bug in the docloader (or whatever should be sending 
nsIWebProgressListener notifications).

Comment 3

17 years ago
Change to Browser/Embedding: Docshell
Assignee: ddrinan → adamlock
Component: Daemon → Embedding: Docshell
Product: PSM → Browser
QA Contact: junruh → adamlock
Target Milestone: 2.0 → mozilla0.9.1
Version: 2.0 → other
(Reporter)

Comment 4

17 years ago
cc'ing people, QA > junruh
QA Contact: adamlock → junruh

Updated

17 years ago
Target Milestone: mozilla0.9.1 → mozilla0.9.2

Comment 5

17 years ago
Should this bug be filed against PSM instead?

Comment 6

17 years ago
No, the bug is that the docloader is not sending the correct notifications to 
PSM.

Comment 7

17 years ago
-> Conrad
Assignee: adamlock → ccarlen
(Assignee)

Comment 8

17 years ago
Accepting.
Status: NEW → ASSIGNED
(Assignee)

Comment 9

17 years ago
John (Unruh) - Do you have a mixed content site in which the mixed content is
not images? The problem may be specific to images and I'd like a test case to
step through.
(Reporter)

Comment 10

17 years ago
This site is 100% insecure content, even though it show https - 
https://junruh.mcom.com/oneframe.html

Comment 11

17 years ago
There is certainly a problem specific to images.  There is another problem 
specific to frames (the mixed frame test page gives you an entering secure 
dialog, an entering insecure dialog, then an entering secure dialog and leaves 
the icon locked), but I don't know if a bug has been filed against the frame 
problem.
(Assignee)

Comment 12

17 years ago
Going to the given URL has developed more problems since this bug was filed.
With current builds, I don't even get the warning about going to a secure site -
no warnings at all! After going back to a build in which I got at least the
warning about the secure site, I've found that warning stopped happening between
2001051004 and 2001051208. So, this has been more broken than this bug claims
ever since about 05/11.
(Assignee)

Updated

17 years ago
Depends on: 85211
Whiteboard: PDT+

Updated

17 years ago
Depends on: 82458

Comment 13

17 years ago
Any hope of a patch in the next couple days?  Please update the status
whiteboard with your eta.
Whiteboard: PDT+ → PDT+; need eta
(Assignee)

Comment 14

17 years ago
-> 0.9.3 I can't yet put an eta on it.
Whiteboard: PDT+; need eta
Target Milestone: mozilla0.9.2 → mozilla0.9.3

Comment 15

17 years ago
Marking dup of 82437.

*** This bug has been marked as a duplicate of 82437 ***
Status: ASSIGNED → RESOLVED
Last Resolved: 17 years ago
Resolution: --- → DUPLICATE
(Reporter)

Comment 16

16 years ago
Verified dupe.
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.