Site Links
Home
Features
Documentation
Pricing & Order
Members Area
Support Options
UBBDev.com
UBBWiki.com
Who's Online Now
1 registered members (Morgan), 59 guests, and 388 spiders.
Key: Admin, Global Mod, Mod
Member Spotlight
TGCsanderson
TGCsanderson
Hackelton U.K.
Posts: 67
Joined: September 2007
Show All Member Profiles 
Top Posters(30 Days)
Gizmo 17
M4TT 12
FREAK 8
Ruben 8
mmkk 4
isaac 4
Latest Photos
Chinese Buddhist temple.
My buddha beads.
Rendered Walls
Multi-Screen wallpaper
Stockholm Metro
Previous Thread
Next Thread
Print Thread
Page 1 of 2 1 2
Insecure password warning, Firefox 52 #259829
03/17/17 02:36 AM
03/17/17 02:36 AM
Joined: May 2006
Posts: 245
California
Steve C Offline OP
enthusiast
Steve C  Offline OP
enthusiast
Joined: May 2006
Posts: 245
California
Mozilla released Firefox 52 in early March, 2017. Now when users on that browser log in, they see a security warning. It occurs on this UBB Central forum site too. If you click the "Learn More" link, firefox gives you this web page.

I would sure like to fix the problem on my site. What can I do?


Here is the warning on UBB Central:

[Linked Image]

Express Hosting
Express Hosting "We are the official hosting company of UBB.threads. Ask us about our free migration services to migrate your UBB.threads installation."
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259830
03/17/17 03:09 AM
03/17/17 03:09 AM
Joined: Apr 2004
Posts: 1,004
California
isaac Offline
UBB.threads Developer
isaac  Offline
UBB.threads Developer
Joined: Apr 2004
Posts: 1,004
California
Did you read the entire "Learn More" link?
https://support.mozilla.org/t5/Protect-your-privacy/Insecure-password-warning-in-Firefox/ta-p/27861

It basically says that the website is not using HTTPS for secure logins. Read the whole page at that link.

Its not just Firefox, Google Chrome also presents a "Learn More" link when performing the same login task.
https://support.google.com/chrome/a...093&p=ui_security_indicator&rd=1

And have a quick read through this page from September 2016:
http://money.cnn.com/2016/09/08/technology/google-chrome-flag-non-secure-sites/


How can you fix it?
Purchase an SSL/TLS Cert and upgrade your website from HTTP to HTTPS.

Further reading at:
https://www.verisign.com/en_US/website-presence/website-optimization/ssl-certificates/index.xhtml
and:
https://en.wikipedia.org/wiki/Public_key_certificate
and:
http://info.ssl.com/article.aspx?id=10241


I've purchased SSL Certs several times over the years from these guys:
https://www.SSLs.com/

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259831
03/17/17 03:13 AM
03/17/17 03:13 AM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
You might also find these Google Ranking Boost articles handy, if you're tempted to switch to SSL.
DigiCert Blog - Google Gives SSL-Secured Sites Search Ranking Boost
Google Webmaster Central Blog - HTTPS as a ranking signal
The Register - HTTP-Yes! Google boosts SSL-encrypted sites in search results

These SSL warnings now display as of Firefox v51 and Chrome v56.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: isaac] #259862
03/18/17 08:53 PM
03/18/17 08:53 PM
Joined: Mar 2007
Posts: 209
E
ECNet Offline
enthusiast
ECNet  Offline
enthusiast
E
Joined: Mar 2007
Posts: 209
Originally Posted by id242

How can you fix it?
Purchase an SSL/TLS Cert and upgrade your website from HTTP to HTTPS

In Layman's terms could you give a simple step by step how to do that?

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259863
03/18/17 08:54 PM
03/18/17 08:54 PM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Configuring your site for SSL/TLS is out of the scope of forum support; feel free to Google Search "How do I setup SSL?"


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259867
03/18/17 11:10 PM
03/18/17 11:10 PM
Joined: May 2006
Posts: 245
California
Steve C Offline OP
enthusiast
Steve C  Offline OP
enthusiast
Joined: May 2006
Posts: 245
California
I see that my hosting service (DreamHost) offers some help with the free 'Let's Encrypt' certificate.

Questions for the experienced UBB admins:

If I install the certificate, will visitors' browsers automatically find the https URL, or will there be a period of questions and problems while everyone has to figure out the change?

Is it reasonable to encrypt the sign-in and leave the rest un-encrypted, so that the main forums remain under the http://... URL while the sign-in screen uses the secure https://..., or is that a pain to set up?

Thanks!

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259868
03/18/17 11:13 PM
03/18/17 11:13 PM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Originally Posted by Steve C
I see that my hosting service (DreamHost) offers some help with the free 'Let's Encrypt' certificate.
Because they're free, it's a great project.

Originally Posted by Steve C
If I install the certificate, will visitors' browsers automatically find the https URL, or will there be a period of questions and problems while everyone has to figure out the change?
You'll have to send traffic over an SSL connection, you can find examples on forcing all URLs to use SSL through .htaccess on Google, I force mine over CloudFlare.

Originally Posted by Steve C
Is it reasonable to encrypt the sign-in and leave the rest un-encrypted, so that the main forums remain under the http://... URL while the sign-in screen uses the secure https://..., or is that a pain to set up?
You get a significant search engine bonus for having a full SSL site, I'd advise against what you're wanting to do.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Gizmo] #259869
03/18/17 11:19 PM
03/18/17 11:19 PM
Joined: May 2006
Posts: 245
California
Steve C Offline OP
enthusiast
Steve C  Offline OP
enthusiast
Joined: May 2006
Posts: 245
California
Originally Posted by Gizmo
You get a significant search engine bonus for having a full SSL site, I'd advise against what you're wanting to do.

I don't want to do that. My main goal is to make it as seamless as possible for the regular/repeat users. Will their old bookmarks find the new https:// site, or will that be a problem for them?

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259870
03/18/17 11:20 PM
03/18/17 11:20 PM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
The answer would be no, UBB.threads does not have an option for the login or registration page to always be SSL, you could probably dig into the templates and specifically write the URLs to be such, but it'd send them back to the forums over SSL after the login/registration.

HTTP and HTTPS are seen as different URLs, just like your WWW vs non-WWW domain. Having an SSL certificate installed doesn't just automatically make their browsers use it. UBBCentral has an SSL certificate and it's not used here on the forums, that's ultimately the same thing that'd happen for you.

HTTP vs HTTPS


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259872
03/19/17 04:49 AM
03/19/17 04:49 AM
Joined: Apr 2004
Posts: 1,004
California
isaac Offline
UBB.threads Developer
isaac  Offline
UBB.threads Developer
Joined: Apr 2004
Posts: 1,004
California
SteveC, you may not care about the SEO ranking factors on your own website, but for others who may come across this post, here is a link which may be helpful to them:

The Big List of SEO Tips and Tricks for Using HTTPS on Your Website
By Cyrus Shepard (September 8th, 2014)
https://moz.com/blog/seo-tips-https-ssl

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259873
03/19/17 08:47 AM
03/19/17 08:47 AM
Joined: Mar 2007
Posts: 209
E
ECNet Offline
enthusiast
ECNet  Offline
enthusiast
E
Joined: Mar 2007
Posts: 209
I was just looking for some generalized steps. Some of the links provided helped a bit with that.

Please tell me if I have things right here, or if I forgot anything.

Need static IP address
Determine what type of SSL is needed and purchase
Install, (or have it installed) on server
Set up a Redirect HTTP >> HTTPS (with 'Wildcard')

End result is any old links using HTTP will be redirected to New HTTPS secure page

Is that basically right?

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259875
03/19/17 09:08 AM
03/19/17 09:08 AM
Joined: Apr 2004
Posts: 1,004
California
isaac Offline
UBB.threads Developer
isaac  Offline
UBB.threads Developer
Joined: Apr 2004
Posts: 1,004
California
The contents of this post have been moved of to this HOW-TO guide:
https://www.ubbcentral.com/forums/u...transition-your-forum-from-http-to-https

Last edited by isaac; 09/23/17 02:49 PM.
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259877
03/19/17 09:53 AM
03/19/17 09:53 AM
Joined: Mar 2007
Posts: 209
E
ECNet Offline
enthusiast
ECNet  Offline
enthusiast
E
Joined: Mar 2007
Posts: 209
Is there any way to test a website (prior to HTTPS change) for potential problems?

I mean problems with the existing content...

Last edited by ECNet; 03/19/17 09:59 AM.
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259879
03/19/17 10:16 AM
03/19/17 10:16 AM
Joined: Apr 2004
Posts: 1,004
California
isaac Offline
UBB.threads Developer
isaac  Offline
UBB.threads Developer
Joined: Apr 2004
Posts: 1,004
California
The third item on the list:
• Do the HTTP migration on a test server to test first

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259881
03/19/17 12:07 PM
03/19/17 12:07 PM
Joined: Jul 2006
Posts: 4,704
Liverpool : England : UK
Mark S Offline
Mark S  Offline

Joined: Jul 2006
Posts: 4,704
Liverpool : England : UK
I'm just going to go for it lol.
And pick up the pieces as i go along.

Thats a great checking list you posted above.

I'm still looking in to this addition and that is to force https via a .htaccess file

Code
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]


I done a test on a basic site of mine with out forums, using the following via my server.
Use a symbolic link from private_html to public_html - allows for same data in http and https

Which then deletes the private_html leaving only the publc_html

However i was not getting the secure icon etc... until i added the htacces lines above and that seems to be working as expected.

Hopefully migrate over later this week using my forums.
I'm not on version 7.6 at this time.

I want to get https settled in on a working forum and then upgrade.

My thinking anyways.


Version v7.5.8
People who inspire me Gizmo ID242 SD
Its been a long road. . . .to be waiting
Re: Insecure password warning, Firefox 52 [Re: isaac] #259885
03/19/17 12:52 PM
03/19/17 12:52 PM
Joined: Mar 2007
Posts: 209
E
ECNet Offline
enthusiast
ECNet  Offline
enthusiast
E
Joined: Mar 2007
Posts: 209
Originally Posted by id242
The third item on the list:
• Do the HTTP migration on a test server to test first

Not sure what you mean exactly, but that sounds like it might be over my head.

Is the 'HTTPS compliance' issue about existing Absolute Links or might some things just stop working, or throwing up obvious Alerts?

If I don't see popup warnings on the website now would that change because of SSL and HTTPS?

Or, I guess... (Assuming SSL and 301 Redirect are set up correctly) what's the worst that could happen? crazy

Last edited by ECNet; 03/19/17 01:01 PM. Reason: added last line
Re: Insecure password warning, Firefox 52 [Re: ECNet] #259898
03/19/17 02:57 PM
03/19/17 02:57 PM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Originally Posted by ECNet
Need static IP address
Unless your host supports Let's Encrypt; Let's Encrypt's SSL offerings can be used on shared ip addresses. Plus, they're free.

Originally Posted by ECNet
Determine what type of SSL is needed and purchase
Unless you're providing order processing and your merchant requires location information, you can get away with any StarterSSL certificate (the cheap ones).

Originally Posted by ECNet
Set up a Redirect HTTP >> HTTPS (with 'Wildcard')
There are a lot of snippits on Google for "Force HTTPS htaccess".

Originally Posted by ECNet
End result is any old links using HTTP will be redirected to New HTTPS secure page
Yes, but you'll likely want to update old links, which would involve database maintenance.

Keep in mind that 3rd party assets (embedding content from other sites that are not SSL, such as Photobucket) will give a warning on pages using them (basically that elements on the page are not provided over SSL).


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Gizmo] #259899
03/19/17 03:38 PM
03/19/17 03:38 PM
Joined: Mar 2007
Posts: 209
E
ECNet Offline
enthusiast
ECNet  Offline
enthusiast
E
Joined: Mar 2007
Posts: 209
Thanks for the additional info. As far as the Forum goes I'd probably just want to get the minimum needed to make the FF warning go away.

I also have an Ecommerce site at: www.LicensedElectrician.com where I'd be looking to get something better. All the online orders currently get processed thru PayPal, but I think I should have something there even if only for appearances.

As far as 3rd party assets go, do you mean like an 'in your face' obvious warning message will appear that doesn't appear now?

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259900
03/19/17 03:39 PM
03/19/17 03:39 PM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
It'll show the "insecure content" message on pages embedding images/files from a non-https address.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259920
03/23/17 10:20 AM
03/23/17 10:20 AM
Joined: Mar 2007
Posts: 209
E
ECNet Offline
enthusiast
ECNet  Offline
enthusiast
E
Joined: Mar 2007
Posts: 209
sorry for the Newbie type questions, but here goes another...

  • If I purchase SSL and it is installed on server, but I don't do 301 redirect to HTTPS does the website function as before? (I mean, no insecure errors that weren't there before)
  • Can I access a page using https prefix to see if there are any compliance issues?


Would that work as a method of testing SSL/HTTPS compatibility?

Bill

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259923
03/23/17 10:36 AM
03/23/17 10:36 AM
Joined: Apr 2004
Posts: 1,004
California
isaac Offline
UBB.threads Developer
isaac  Offline
UBB.threads Developer
Joined: Apr 2004
Posts: 1,004
California
"HTTP" and "HTTPS" are two different protocols. Think of them as if they are two different "cars" (yes, another car analogy).

1) "HTTP" is made of transparent glass and anyone who wants to see inside it, can.

2) "HTTPS" is made of solid lead, and only the user driving it will be able to see inside of it.

Each "vehicle" has its own key. In this case, the key is called a cookie.

To get from one and to another, you would literally be switching vehicles, since HTTP and HTTPS are not the same vehicle. So if you are taking a trip from one to "the store" up the street, the other one would be left in your garage.

As a user on a website which uses session information, there really is no switching back and forth on the fly between the two of them, when only one key can control one vehicle.

With the HTTP "vehicle," you will always get that warning from Firefox and Chrome, as long as they continue to notify users that they are currently using that "transparent glass" HTTP vehicle smile

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259924
03/23/17 11:01 AM
03/23/17 11:01 AM
Joined: Mar 2007
Posts: 209
E
ECNet Offline
enthusiast
ECNet  Offline
enthusiast
E
Joined: Mar 2007
Posts: 209
I'm confused. Maybe I didn't explain it right.

I'm just trying to understand how SSL and HTTPS works.

Hypothetically, say I have an existing website, and I want to install SSL to reassure visitors, but are apprehensive about possible incompatibilities that may then be exposed and need fixing.

Right now, in FF there are no 'in your face warnings' unless there's a page with a form.

If I have SSL installed on the server but no Redirect to HTTPS set up yet does the website appear as before? (Does the HTTPS prefix force the page to use the SSL?)

In other words I can access a page via http://www.myDomain.com - and it appears as before
And, can I also access that same page via https://www.myDomain.com - which may then more visually warn of insecure items? (this way I could see and fix some problems before forcing HTTPS redirect)

Would that work?

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259927
03/23/17 11:20 AM
03/23/17 11:20 AM
Joined: May 2008
Posts: 742
Coast of Maine
Bad Frog Offline
old hand
Bad Frog  Offline
old hand
Joined: May 2008
Posts: 742
Coast of Maine
sign up for a free cloudflare account, and you can get a free generic SSL cert, don't have to spend a dime.

just have to enable in the control panel on CF.

there are several htaccess tricks that you can implement that will redirect people visiting your site via http to https


I have also noticed if you have any non-https links on your site/login page, they will cause you to get the non secure warning as well.


"No matter where you go, there you are."
"If you can't do something smart, Do something right"
"There are three kinds of people in the world, those who can count, and those who can't"
Re: Insecure password warning, Firefox 52 [Re: ECNet] #259928
03/23/17 11:23 AM
03/23/17 11:23 AM
Joined: May 2008
Posts: 742
Coast of Maine
Bad Frog Offline
old hand
Bad Frog  Offline
old hand
Joined: May 2008
Posts: 742
Coast of Maine
Originally Posted by ECNet
I'm confused. Maybe I didn't explain it right.


If I have SSL installed on the server but no Redirect to HTTPS set up yet does the website appear as before? (Does the HTTPS prefix force the page to use the SSL?)



if people don't type in https, and you have no redirect, they will always be on the non secure version.. you have to tell them to enter https, and/or enable a redirect that automatically converts/redirects folks to https.


"No matter where you go, there you are."
"If you can't do something smart, Do something right"
"There are three kinds of people in the world, those who can count, and those who can't"
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259929
03/23/17 11:24 AM
03/23/17 11:24 AM
Joined: Apr 2004
Posts: 1,004
California
isaac Offline
UBB.threads Developer
isaac  Offline
UBB.threads Developer
Joined: Apr 2004
Posts: 1,004
California
The HTTP session cookie is for HTTP
The HTTPS session cookie is for HTTPS

You basically have two session cookies. One for each protocol.

If you are on HTTPS and try to access files which are on an HTTP address, Firefox/Chrome will warn you that that the page is not secure -- because you are attempting to send unencrypted HTTP data in to your encrypted HTTPS connection.

>> Further reading <<

Re: Insecure password warning, Firefox 52 [Re: Bad Frog] #259930
03/23/17 11:27 AM
03/23/17 11:27 AM
Joined: Apr 2004
Posts: 1,004
California
isaac Offline
UBB.threads Developer
isaac  Offline
UBB.threads Developer
Joined: Apr 2004
Posts: 1,004
California
Originally Posted by Bad Frog
Originally Posted by ECNet
I'm confused. Maybe I didn't explain it right.

If I have SSL installed on the server but no Redirect to HTTPS set up yet does the website appear as before? (Does the HTTPS prefix force the page to use the SSL?)


if people don't type in https, and you have no redirect, they will always be on the non secure version.. you have to tell them to enter https, and/or enable a redirect that automatically converts/redirects folks to https.


Good reply, BadFrog :thumbsup:

Here is the .htaccess code to do exactly what BadFrog is talking about:

Code
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]


SOURCE (posted earlier in this thread):
https://www.ubbcentral.com/forums/ub...e-password-warning-firefox-52#Post259881

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259932
03/23/17 11:46 AM
03/23/17 11:46 AM
Joined: Mar 2007
Posts: 209
E
ECNet Offline
enthusiast
ECNet  Offline
enthusiast
E
Joined: Mar 2007
Posts: 209
Maybe I'm asking the wrong questions.

I've done hours of searching about SSL and HTTPS. I think I have the basic idea of the steps involved.

What I have been unable to find out is how a website reacts after doing that.

Example: Existing website on FF, no visual warnings on any pages other than the little gray information icon in address bar.

All the embedded content works - linked images & videos from other sites, js Menus, Rotating Banners, etc.

If that website now has SSL installed and HTTPS redirect does the website look as before? same little gray info link in Address bar - or gets a padlock (or Greenbar) if everything is secure?

Or... does a message bar or popup appear alerting visitor of insecure links on that page or empty boxes where my js menu or Banners or embedded videos once were, etc.

In other words, does SSL and HTTPS force the page to examined more closely and give much more visual alerts to insecure content or links?


Last edited by ECNet; 03/23/17 11:49 AM. Reason: Added last sentence
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259933
03/23/17 12:02 PM
03/23/17 12:02 PM
Joined: Apr 2004
Posts: 1,004
California
isaac Offline
UBB.threads Developer
isaac  Offline
UBB.threads Developer
Joined: Apr 2004
Posts: 1,004
California
If every item on the HTTPS page is from the same domain and using the HTTPS protocol (or just using the HTTPS protocol), Chrome and Firefox will not display insecure content warnings. (edit: this assumes that the domains are using a valid certs)

If any single element on an HTTPS page is coming from an HTTP page, there will be an "insecure content" warning. Because now you are delivering mixed content to your users.

http = insecure content
and
mixed content on https = insecure content

insecure content triggers insecure content warnings in Firefox and Chrome.

further reading at:
https://support.volusion.com/hc/en-...-on-Secure-Volusion-Store-Pages-With-SSL

https://www.globalsign.com/en/blog/how-to-fix-mixed-content-warnings-on-your-ssl-site/

Last edited by isaac; 03/23/17 12:05 PM. Reason: to add valid cert comment
Re: Insecure password warning, Firefox 52 [Re: isaac] #259935
03/23/17 01:05 PM
03/23/17 01:05 PM
Joined: Mar 2007
Posts: 209
E
ECNet Offline
enthusiast
ECNet  Offline
enthusiast
E
Joined: Mar 2007
Posts: 209
Originally Posted by isaac
If every item on the HTTPS page is from the same domain and using the HTTPS protocol (or just using the HTTPS protocol), Chrome and Firefox will not display insecure content warnings. (edit: this assumes that the domains are using a valid certs)

If any single element on an HTTPS page is coming from an HTTP page, there will be an "insecure content" warning. Because now you are delivering mixed content to your users.

http = insecure content
and
mixed content on https = insecure content

insecure content triggers insecure content warnings in Firefox and Chrome.
I get that. As is there's a little gray icon that, if I click on it tells me it's not secure.

Now, if I install SSL and HTTPS redirect would I still see just the little gray icon if insecure content was on that page? Or, would I get a more forceful indication like a popup or information bar that wasn't there before SSL?

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259936
03/23/17 01:14 PM
03/23/17 01:14 PM
Joined: May 2008
Posts: 742
Coast of Maine
Bad Frog Offline
old hand
Bad Frog  Offline
old hand
Joined: May 2008
Posts: 742
Coast of Maine
if there is any insecure links on the page, you will still get the gray icon

best bet? implement SSL and see.


"No matter where you go, there you are."
"If you can't do something smart, Do something right"
"There are three kinds of people in the world, those who can count, and those who can't"
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259937
03/23/17 01:22 PM
03/23/17 01:22 PM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Note, configuring or purchasing an security certificate is outside of the scope of forum support.

Your users will not see the SSL page unless they're sent there, you can test before you move.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Bad Frog] #259938
03/23/17 01:27 PM
03/23/17 01:27 PM
Joined: Apr 2004
Posts: 1,004
California
isaac Offline
UBB.threads Developer
isaac  Offline
UBB.threads Developer
Joined: Apr 2004
Posts: 1,004
California
Originally Posted by Bad Frog
best bet? implement SSL and see.


I want to +1 this comment so much!

Re: Insecure password warning, Firefox 52 [Re: Bad Frog] #259939
03/23/17 01:41 PM
03/23/17 01:41 PM
Joined: Mar 2007
Posts: 209
E
ECNet Offline
enthusiast
ECNet  Offline
enthusiast
E
Joined: Mar 2007
Posts: 209
Originally Posted by Bad Frog
if there is any insecure links on the page, you will still get the gray icon


I understand, if that's all that happens I can deal with it. I can fix things behind the scenes until it reads as secure.

I think most people just Browsing a site wouldn't even notice the gray icon.
If SSL causes popups and other obvious warnings that's a different story. That's what I'm trying to find out in advance.

sorry, I thought it was an easy question.

Re: Insecure password warning, Firefox 52 [Re: ECNet] #259940
03/23/17 02:10 PM
03/23/17 02:10 PM
Joined: May 2008
Posts: 742
Coast of Maine
Bad Frog Offline
old hand
Bad Frog  Offline
old hand
Joined: May 2008
Posts: 742
Coast of Maine
Originally Posted by ECNet
Originally Posted by Bad Frog
if there is any insecure links on the page, you will still get the gray icon


I understand, if that's all that happens I can deal with it. I can fix things behind the scenes until it reads as secure.

I think most people just Browsing a site wouldn't even notice the gray icon.
If SSL causes popups and other obvious warnings that's a different story. That's what I'm trying to find out in advance.

sorry, I thought it was an easy question.



I have recently received emails from people on my site concerned about chrome and FF big bad warning about security.. I got a free SSL cert from my free cloudflare.com account, I spent a few days cleaning up links and problem solved.


"No matter where you go, there you are."
"If you can't do something smart, Do something right"
"There are three kinds of people in the world, those who can count, and those who can't"
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259941
03/23/17 02:18 PM
03/23/17 02:18 PM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
And if you're on CloudFlare, the following page rule will redirect all of your traffic to use SSL:
Match: example.com/*
Forwarding URL
301 Redirect
Destination: https://www.example.com/$1


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259942
03/23/17 03:06 PM
03/23/17 03:06 PM
Joined: May 2006
Posts: 245
California
Steve C Offline OP
enthusiast
Steve C  Offline OP
enthusiast
Joined: May 2006
Posts: 245
California
Originally Posted by Bad Frog
I have recently received emails from people on my site concerned about chrome and FF big bad warning about security.. I got a free SSL cert from my free cloudflare.com account, I spent a few days cleaning up links and problem solved.

My forum has a large number of links to other threads within the forum. Would those all need to be modified to use "https", or would creating the the .htaccess code redirect take care of that?

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259943
03/23/17 03:18 PM
03/23/17 03:18 PM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Existing links within your posts, pm's, and user avatars will all retain their HTTP; unless you're super comfortable with crafting and executing queries directly to your database I would advise hiring the task out.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259944
03/23/17 03:38 PM
03/23/17 03:38 PM
Joined: Mar 2007
Posts: 209
E
ECNet Offline
enthusiast
ECNet  Offline
enthusiast
E
Joined: Mar 2007
Posts: 209
Guys,

I appreciate the responses I've gotten to my posts in this thread.
Maybe I'm being dense, but it seems like you've been missing my questions and giving me answers to things I didn't ask.

I give up...

Re: Insecure password warning, Firefox 52 [Re: ECNet] #259945
03/23/17 03:43 PM
03/23/17 03:43 PM
Joined: Apr 2004
Posts: 1,004
California
isaac Offline
UBB.threads Developer
isaac  Offline
UBB.threads Developer
Joined: Apr 2004
Posts: 1,004
California
Originally Posted by ECNet
I appreciate the responses I've gotten to my posts in this thread.
Maybe I'm being dense, but it seems like you've been missing my questions and giving me answers to things I didn't ask.

I give up...


https://www.google.com/

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259946
03/23/17 04:40 PM
03/23/17 04:40 PM
Joined: Mar 2007
Posts: 209
E
ECNet Offline
enthusiast
ECNet  Offline
enthusiast
E
Joined: Mar 2007
Posts: 209
Thanks

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259947
03/23/17 08:05 PM
03/23/17 08:05 PM
Joined: May 2008
Posts: 742
Coast of Maine
Bad Frog Offline
old hand
Bad Frog  Offline
old hand
Joined: May 2008
Posts: 742
Coast of Maine
Originally Posted by Steve C
Originally Posted by Bad Frog
I have recently received emails from people on my site concerned about chrome and FF big bad warning about security.. I got a free SSL cert from my free cloudflare.com account, I spent a few days cleaning up links and problem solved.

My forum has a large number of links to other threads within the forum. Would those all need to be modified to use "https", or would creating the the .htaccess code redirect take care of that?

You need to update the links, htaccess only affects your domain name


"No matter where you go, there you are."
"If you can't do something smart, Do something right"
"There are three kinds of people in the world, those who can count, and those who can't"
Re: Insecure password warning, Firefox 52 [Re: ECNet] #259948
03/23/17 08:07 PM
03/23/17 08:07 PM
Joined: May 2008
Posts: 742
Coast of Maine
Bad Frog Offline
old hand
Bad Frog  Offline
old hand
Joined: May 2008
Posts: 742
Coast of Maine
Originally Posted by ECNet
Guys,

I appreciate the responses I've gotten to my posts in this thread.
Maybe I'm being dense, but it seems like you've been missing my questions and giving me answers to things I didn't ask.

I give up...


Just enable ssl and see for yourself.
There are no pop-ups or anything..
People will stop getting the unsecured warnings they are getting now.


"No matter where you go, there you are."
"If you can't do something smart, Do something right"
"There are three kinds of people in the world, those who can count, and those who can't"
Re: Insecure password warning, Firefox 52 [Re: Gizmo] #259949
03/23/17 08:08 PM
03/23/17 08:08 PM
Joined: May 2008
Posts: 742
Coast of Maine
Bad Frog Offline
old hand
Bad Frog  Offline
old hand
Joined: May 2008
Posts: 742
Coast of Maine
Originally Posted by Gizmo
And if you're on CloudFlare, the following page rule will redirect all of your traffic to use SSL:
Match: example.com/*
Forwarding URL
301 Redirect
Destination: https://www.example.com/$1


I assume this is in the cliudflare rules?
I have yet to use that feature


"No matter where you go, there you are."
"If you can't do something smart, Do something right"
"There are three kinds of people in the world, those who can count, and those who can't"
Re: Insecure password warning, Firefox 52 [Re: Bad Frog] #259950
03/23/17 08:12 PM
03/23/17 08:12 PM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Originally Posted by Bad Frog
I assume this is in the cliudflare rules?
I have yet to use that feature

Yup, the rules do processing before the request to your server, so your server won't have to do as much.

I have my no-WWW -> WWW and my Non-Secure -> Secure processing


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259951
03/23/17 08:50 PM
03/23/17 08:50 PM
Joined: May 2008
Posts: 742
Coast of Maine
Bad Frog Offline
old hand
Bad Frog  Offline
old hand
Joined: May 2008
Posts: 742
Coast of Maine
when I try to add the 301 rule, either via htaccess or cloudflare, it seems to break my site, I get an error about to many redirects. (even with htaccess completely removed)

Last edited by Bad Frog; 03/23/17 09:00 PM.

"No matter where you go, there you are."
"If you can't do something smart, Do something right"
"There are three kinds of people in the world, those who can count, and those who can't"
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259952
03/23/17 11:14 PM
03/23/17 11:14 PM
Joined: May 2006
Posts: 245
California
Steve C Offline OP
enthusiast
Steve C  Offline OP
enthusiast
Joined: May 2006
Posts: 245
California
Say... Is there a UBB.t forum around that is already running under https, where I can join and try some experimental posting?

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259953
03/23/17 11:18 PM
03/23/17 11:18 PM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259954
03/23/17 11:19 PM
03/23/17 11:19 PM
Joined: Apr 2004
Posts: 1,004
California
isaac Offline
UBB.threads Developer
isaac  Offline
UBB.threads Developer
Joined: Apr 2004
Posts: 1,004
California
Both Gizmo and I have https setup on a few of our forums for quite some time. Gizmo is running one of his forums through cloudflair's https system (as posted above) and I am running one of mine through a cert installed on my server.

One of Gizmo's forums:
https://www.agardenersforum.com/forum/
One of mine:
https://www.celicahobby.com/

Beware though, these are live forums, so if you are posting off topic random things to either of the forums, one of the mods may delete the posts or take action on your account

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259955
03/24/17 12:28 AM
03/24/17 12:28 AM
Joined: May 2006
Posts: 245
California
Steve C Offline OP
enthusiast
Steve C  Offline OP
enthusiast
Joined: May 2006
Posts: 245
California
Thanks for the links. So I took a peek. Sure is hard to find any people posting a link to another thread, so I gave that up.

But I did to this: With any links within the forums, I see they start with "https". I copy the link, move to a different browser tab, paste the link, but take the s out of https. Hit enter, and your site (or the browser) adjusts the link and displays the correct page.

So that experience doesn't equate with this:
Originally Posted by Gizmo
Existing links within your posts, pm's, and user avatars will all retain their HTTP; unless you're super comfortable with crafting and executing queries directly to your database I would advise hiring the task out.

Gizmo is pretty much saying everything must be changed, or the worries that someone like ECnet kept trying to ask about will be true.

Which way IS it?

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259956
03/24/17 01:24 AM
03/24/17 01:24 AM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Originally Posted by Steve C
Thanks for the links. So I took a peek. Sure is hard to find any people posting a link to another thread, so I gave that up.
Well, the links they'll have TO other threads will be HTTPS if you make all traffic use it (as the link they'll create by copying from the address bar will have been over a secure connection.

Originally Posted by Steve C
But I did to this: With any links within the forums, I see they start with "https". I copy the link, move to a different browser tab, paste the link, but take the s out of https. Hit enter, and your site (or the browser) adjusts the link and displays the correct page.
All of my database content of all internal links on my pages where updated in the database; if you don't do database maintenance then your existing content links for posts, avatars, and signatures will remain as they where created.

Additionally, any non-secure requests on my sites are automatically forwarded to the secure version via my CDN's Page Rules configuration.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259957
03/24/17 07:49 AM
03/24/17 07:49 AM
Joined: May 2008
Posts: 742
Coast of Maine
Bad Frog Offline
old hand
Bad Frog  Offline
old hand
Joined: May 2008
Posts: 742
Coast of Maine
My site uses https.

First thing I did was update all links to external sites (advertising, stat counters, etc) from http to https. If they didn't support https at all, I deleted them.

Then I ran some database queries {with help from Gizmo and Isaac) to search and replace all internal links in user posts, etc from http to https.

CloudFlare automatically forces https for me (can also be forced via htaccess) , thanks to the rules page Gizmo mentioned, but before that, if you only entered http:// you would get the grey warning, instead of the green lock.

My site is vanning.com


"No matter where you go, there you are."
"If you can't do something smart, Do something right"
"There are three kinds of people in the world, those who can count, and those who can't"
Re: Insecure password warning, Firefox 52 [Re: Bad Frog] #259958
03/24/17 11:03 AM
03/24/17 11:03 AM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Originally Posted by Bad Frog
First thing I did was update all links to external sites (advertising, stat counters, etc) from http to https. If they didn't support https at all, I deleted them.
Yeah, a lot of sites don't use SSL, such as Photobucket; so users embedding offsite content from non-ssl sites will mark that page as having shared assets (items from both secure and insecure places)

Originally Posted by Bad Frog
Then I ran some database queries {with help from Gizmo and Isaac) to search and replace all internal links in user posts, etc from http to https.

I'm glad to hear that you got yourself up and running.

Be sure that you create new properties at Google for your https site, it's treated as a seperate property than your non-secure site. Also, my UBB.Sitemaps and UBB.MemberMaps addons both support secure sites, whatever URL it's accessed from will push that type of url (so on your secure property at Gooogle you'd request the ssl version of the sitemap).


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Bad Frog] #259970
03/28/17 01:11 PM
03/28/17 01:11 PM
Joined: Jul 2006
Posts: 4,704
Liverpool : England : UK
Mark S Offline
Mark S  Offline

Joined: Jul 2006
Posts: 4,704
Liverpool : England : UK
Originally Posted by Bad Frog
My site uses https.
Then I ran some database queries {with help from Gizmo and Isaac) to search and replace all internal links in user posts, etc from http to https.



Any chance of sharing those queries ?
Ive looked into this and Google Site Maps is wayyyyyy down.... it has Submitted 45,000 urls from site maps, but only indexed 9,000 after some reading my old http links within could be causing the problem.
I have resubmitted Gizmos site map twice now over a week period and its still the same. BTW I am still on 7.5x not 7.6x I wanted to get my site https then upgrade, as i know i have a working forum.

Thanks for any help.


Version v7.5.8
People who inspire me Gizmo ID242 SD
Its been a long road. . . .to be waiting
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259972
03/28/17 02:27 PM
03/28/17 02:27 PM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
It's pretty involved (user avatars, user signatures, the compiled and non-compiled post data, and the pt's), but it's basically just MySQL Replace followed by rebuilding post content. Be sure to backup your databases before you begin any maintenance to the UBB.threads database.

The command should be run from the MySQL command line or at the very least PHPMyAdmin, and is CaSe SeNsItIvE, so if you've used different formatting for your domain, you'll need to pass all types of that formatting. An example, a client had MyWebsite.com MyWebSite.com mywebsite.com www.mywebsite.com www.MyWebsite.com www.MyWebSite.com in their database as entries for their domain; so each had to be run through the update (where I replaced everything with their lowercase non-www version).

Note that the SSL property is an entirely new property and it can take months to fully reindex your site; it won't be overnight, weekly, or even a month long thing, and depending on how much content you have, it can take some time for everything to be re-indexed.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259977
03/28/17 03:08 PM
03/28/17 03:08 PM
Joined: Jul 2006
Posts: 4,704
Liverpool : England : UK
Mark S Offline
Mark S  Offline

Joined: Jul 2006
Posts: 4,704
Liverpool : England : UK
I done a quick Google its not that difficult to do.
As you say Gizmo, back up and test it first, which I will do.

What's strange with my site map it indexed 18,000 and over a week has dropped to 9,000 out of 65,000 submitted.

Previously with site maps it was indexed with in 3 - 4 days, from my old images I kept as a reminder.

It could also be goggles algorithm again.
In January site index dropped to 0 which I never picked up on, I think it was that, and no site map was listed, hence re-submitting it again. So check webmaster tools just incase Google has killed of any site maps.

Im sure it will come together.

Avatars, i had about 100 users were using from our uploads, so i manually updated those to https lol.

For now, I think I only have the posts table to search and replace, avatars has been done.

Would you recommend updating all urls in topics to https,even if an external site is not https at this time. Or just internal site links, as they should also have redirects in place.


Version v7.5.8
People who inspire me Gizmo ID242 SD
Its been a long road. . . .to be waiting
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259978
03/28/17 03:11 PM
03/28/17 03:11 PM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Only update your domain, as you have no control over other domains (do a find/replace for your existing URL format, http://www.whatever); do NOT update other URLs to 3rd party sites/content until you know they support Secure URLs as you'll just end up with a bunch of non-functioning URLs.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259979
03/28/17 03:14 PM
03/28/17 03:14 PM
Joined: Jul 2006
Posts: 4,704
Liverpool : England : UK
Mark S Offline
Mark S  Offline

Joined: Jul 2006
Posts: 4,704
Liverpool : England : UK
Thank you Gizmo.
As Mark Bows turns and leaves the room.

Clever fella that Gizmo fella... Just like Isaac yu know smile


Version v7.5.8
People who inspire me Gizmo ID242 SD
Its been a long road. . . .to be waiting
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259981
03/28/17 03:16 PM
03/28/17 03:16 PM
Joined: Apr 2004
Posts: 1,004
California
isaac Offline
UBB.threads Developer
isaac  Offline
UBB.threads Developer
Joined: Apr 2004
Posts: 1,004
California
Gizmo often steps in to handle difficult tasks... often.

Re: Insecure password warning, Firefox 52 [Re: Steve C] #259982
03/28/17 03:19 PM
03/28/17 03:19 PM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
I do love the 3am "Hey, take a look at this" followed up by "how about we try it like this?" lol


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Steve C] #259985
03/28/17 07:49 PM
03/28/17 07:49 PM
Joined: May 2008
Posts: 742
Coast of Maine
Bad Frog Offline
old hand
Bad Frog  Offline
old hand
Joined: May 2008
Posts: 742
Coast of Maine
I tested each external link by changing it to Https first before changing anything on my site


"No matter where you go, there you are."
"If you can't do something smart, Do something right"
"There are three kinds of people in the world, those who can count, and those who can't"
Re: Insecure password warning, Firefox 52 [Re: Steve C] #260076
04/24/17 08:14 PM
04/24/17 08:14 PM
Joined: Mar 2007
Posts: 209
E
ECNet Offline
enthusiast
ECNet  Offline
enthusiast
E
Joined: Mar 2007
Posts: 209
Question for Gizmo...

After going to ssl do any settings or language in ubb.sitemap need to be changed?

Re: Insecure password warning, Firefox 52 [Re: Steve C] #260077
04/24/17 08:17 PM
04/24/17 08:17 PM
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
Gizmo Offline
UBB.threads Developer
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,788
Portland, OR; USA
If you're running a recent build (latest is v0.10, released on October 26th, 2015) there shouldn't be anything you have to worry about, as the URL scheme is read based on how the script is fetched.(if it's fetched over SSL it will write all of the URLs as SSL).


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: Insecure password warning, Firefox 52 [Re: Steve C] #260083
04/25/17 09:25 AM
04/25/17 09:25 AM
Joined: Mar 2007
Posts: 209
E
ECNet Offline
enthusiast
ECNet  Offline
enthusiast
E
Joined: Mar 2007
Posts: 209
Yes, thanks.

Page 1 of 2 1 2

Shout Box
Today's Birthdays
No Birthdays
Recent Topics
Users Unable to Upload Avatar [Not a Bug]
by M4TT. 12/13/17 08:51 AM
Shout Box Sound Effect
by M4TT. 11/29/17 08:28 PM
Ad island
by TGCsanderson. 11/25/17 06:41 PM
Taking to long to connect to DB
by AstroCat. 11/24/17 12:34 PM
Forum Statistics
Forums36
Topics35,015
Posts190,544
Members12,045
Most Online978
Jun 24th, 2007
Random Image
Powered by UBB.threads™ PHP Forum Software 7.6.1
(Snapshot build 20171106)