After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 309088 - Frequent popup on pages with partly insecure elements
Frequent popup on pages with partly insecure elements
Status: RESOLVED INCOMPLETE
Product: epiphany
Classification: Core
Component: Interface
git master
Other All
: Normal normal
: ---
Assigned To: Epiphany Maintainers
Marco Pesenti Gritti
: 478145 (view as bug list)
Depends on:
Blocks:
 
 
Reported: 2005-06-26 21:51 UTC by Samuel Abels
Modified: 2011-03-08 01:43 UTC
See Also:
GNOME target: ---
GNOME version: 2.11/2.12



Description Samuel Abels 2005-06-26 21:51:29 UTC
Please describe the problem:
When a https site contains non-https elements a popup appears:

"Some parts of this page are loaded over an insecure connection"

The problem is that it appears on every single page opened and has no "ignore
next time" switch.

Steps to reproduce:
1. Visit
https://mail.gna.org/public/ammerum-cvs/2005-06/threads.html

2. Browse around the list archives. This is a royal pain, because the popup
appears on every single page and can not be dismissed forever.


Actual results:


Expected results:
Add a "Do not show this message again for this domain" switch.

Does this happen every time?
yap

Other information:
Comment 1 Christian Persch 2005-06-26 21:53:37 UTC
What is the value of the pref "security.warn_viewing_mixed" in about:config? It
should be 'false'.
Comment 2 Samuel Abels 2005-06-26 21:59:39 UTC
about:config shows

Preference: security.warn_viewing_mixed:
Status: default
Value: true

I changed the value to "false", now the message doesn't appear anymore (at all),
I don't know whether that is the intended default behavior.

I use Ubuntu (epi 1.7.1-0ubuntu1) and upgraded from Warty -> Hoary -> Breezy, so
the config was probably preserved from Warty. (?)
Comment 3 Christian Persch 2005-06-26 22:38:17 UTC
It's just a missing default pref. Although now I'm not sure what the default
value should be... how important is this warning?
Comment 4 Jean-François Fortin Tam 2005-09-02 00:05:14 UTC
Just wanted you to know that it does that with sourceforge... Pretty annoying,
I'd say. Try accessing sourceforge from the link on that page for example
(because that's the most relevant example I have)

http://veldstra.co.uk/websharing/
Comment 5 Christian Persch 2005-09-27 20:34:47 UTC
I don't really want to permanently disabling the dialogue. OTOH, if it's really
annoying then people will just ignore it always on every site...
Comment 6 Andrew Conkling 2006-04-20 03:44:36 UTC
I think it should be displayed once by default, and I propose that the color of the address entry be changed to indicate the partial security... red?

That way, the message is displayed, but only once, and the user has a constant indicator of the security of the page, just as the yellow address entry indicates a secure page.
Comment 7 Reinout van Schouwen 2011-01-19 11:05:57 UTC
*** Bug 478145 has been marked as a duplicate of this bug. ***
Comment 8 Reinout van Schouwen 2011-01-19 11:06:58 UTC
Reporter(s), can you still reproduce this with the latest (webkit-based) Epiphany release?
Comment 9 Diego Escalante Urrelo (not reading bugmail) 2011-01-21 01:37:35 UTC
In master this doesn't exist. I don't think we are detecting this kind of stuff at all.

I'd close it, when we re-implement this warning we will notice if we do it wrong again :)
Comment 10 Fabio Durán Verdugo 2011-03-08 01:43:39 UTC
Closing this bug report as no further information has been provided. Please feel free to reopen this bug if you can provide the information asked for.
Thanks!