"site ... does not support encryption" is misleading (page info->security)

VERIFIED INVALID

Status

--
minor
VERIFIED INVALID
17 years ago
2 years ago

People

(Reporter: jruderman, Assigned: ddrinan0264)

Tracking

1.0 Branch
x86
Windows 98

Firefox Tracking Flags

(Not tracked)

Details

(URL)

(Reporter)

Description

17 years ago
Steps to reproduce:
1. Go to http://paydirect.yahoo.com/.
2. Open Page Info (Ctrl+I) and select the Security tab.

Notice the text "The web site paydirect.yahoo.com does not support encryption 
for the page you are viewing."  But if I go to https://paydirect.yahoo.com/, I 
get the same page, encrypted, so the server does support encryption for that 
page.

Unless someone
(Reporter)

Comment 1

17 years ago
Unless someone knows what that line of text was supposed to mean, it's probably 
best to just remove the line.

Comment 2

17 years ago
Marking invalid. The behavior is as expected. The http server is using the 
default port 80, and the https server is using the default ssl port of 443. So, 
you are actually reaching the same page, but sent by two different servers. So, 
http://paydirect.yahoo.com:80 actually does not support encryption.
Status: NEW → RESOLVED
Last Resolved: 17 years ago
Resolution: --- → INVALID

Comment 3

17 years ago
Verified invalid.
Status: RESOLVED → VERIFIED
(Reporter)

Comment 4

17 years ago
I still think it's misleading.  Many people think of http://www.ecount.com/ and
https://www.ecount.com/ as being the same server, and think of "www.ecount.com"
as the server for each of those URLs.

Comment 5

17 years ago
Mass changing Security:Crypto to PSM
Component: Security: Crypto → Client Library
Product: Browser → PSM
Version: other → 2.1

Comment 6

17 years ago
Mass changing Security:Crypto to PSM

Updated

14 years ago
Component: Security: UI → Security: UI
Product: PSM → Core

Updated

10 years ago
Version: psm2.1 → 1.0 Branch
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.