This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Get Firefox to ask confirmation when redirected from https to http?

  • 3 replies
  • 1 has this problem
  • 1 view
  • Last reply by ffuss

more options

Some websites with only partial HTTPS support will automatically redirect to an unencrypted version of the page. Firefox does not give a warning or ask confirmation before fetching the unencrypted URL, which I consider to be a security issue. An example is https://www.amazon.com/ which will silently redirect to http://www.amazon.com/. Is there a setting I can change to make Firefox ask confirmation before following Location headers?

Some websites with only partial HTTPS support will automatically redirect to an unencrypted version of the page. Firefox does not give a warning or ask confirmation before fetching the unencrypted URL, which I consider to be a security issue. An example is https://www.amazon.com/ which will silently redirect to http://www.amazon.com/. Is there a setting I can change to make Firefox ask confirmation before following Location headers?

All Replies (3)

more options

This won't answer your question, but have you tried add-ons like HTTPS Everywhere?

You can also try the following, but will probably give you more headache than its worth depending on the sites you browse:

  • Edit (or New Fx Menu) > Preferences > Advanced > General
  • Select "Warn me when sites try to redirect or reload the page"
more options

Thanks Cory, but HTTPS Everywhere won't help and I already have the suggested preference enabled; it doesn't work for 3xx Location redirects.

more options

I tried an addon called noredirect but it doesn't work, presumably because it's three years old. Does firefox really require 4gigs of ram to compile? I'd try writing a patch but I'm using a netbook (512M ram)