After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 754460 - Mixed Content Warnings on
Mixed Content Warnings on
Product: website
Classification: Infrastructure
Other Linux
: Normal normal
: ---
Assigned To: Yuri Konotopov
Shell extensions maintainer(s)
: 759163 (view as bug list)
Depends on:
Reported: 2015-09-02 14:13 UTC by Mike
Modified: 2016-11-26 10:57 UTC
See Also:
GNOME target: ---
GNOME version: ---

Description Mike 2015-09-02 14:13:21 UTC
When browsing to, I see mixed a mixed content warning in my URL bar. This website is designed to install software at into my OS with a high privilege level, making the security of very, very important.

According to Firefox's security log[1], the resource causing this problem is:

> Loading mixed (insecure) display content "" on a secure page jquery.js:6411:0

It looks like this is already getting redirected to a secure version, which is good because it means the resource is already available over HTTPS, but the redirection is a vector for attack.

Can we please get this fixed? In my opinions this is one of those bugs that defeats the whole purpose of the site, since it makes it very hard to trust the software it is providing.

Comment 1 Jasper St. Pierre (not reading bugmail) 2015-09-02 15:17:08 UTC
Bizarre. It seems Gravatar has started completely flat out ignoring the thing and redirecting us to its own HTTP website. That's unfortunate.
Comment 2 Yuri Konotopov 2016-11-06 06:30:47 UTC
This is fixed in theme/gnome-grass/2016 git branch: and will be deployed soon
Comment 3 Tom Tryfonidis 2016-11-11 13:39:45 UTC
*** Bug 759163 has been marked as a duplicate of this bug. ***
Comment 4 Yuri Konotopov 2016-11-26 10:57:36 UTC
Deployed on production server