This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

'Insecure Connection' Browser Question

  • 3 replies
  • 2 have this problem
  • 10 views
  • Last reply by cor-el

more options

While I am aware that the URL key-lock has a red line through it when a website has an insecure connection, is it still safe to visit it?

The website in question is a care home facility but no personal information is being entered (I am just viewing information on the facility).

Thanks in advance.

While I am aware that the URL key-lock has a red line through it when a website has an insecure connection, is it still safe to visit it? The website in question is a care home facility but no personal information is being entered (I am just viewing information on the facility). Thanks in advance.

All Replies (3)

more options

Hey! I was once doubted by the same question a year ago so I understand your concern.

Short answer: If you don't type any personal info, you shouldn't worry about it. Whenever you type sensitive informations (passwords, account details etc.) you have to watch out if a connection is secure. For regular browsing, non-secured sites are rare nowadays, almost all popular sites are secured so if you sometimes find non-secured site, it's okay to visit it.

Detailed answer: When a site is secure (meaning it's HTTPS encrypted; only you and that website know what's being transmitted) it will show a normal key-lock, like on this site, upper left next to URL bar. When a site is not HTTPS encrypted, it will show red line through the lock. HTTPS encryption is standard today. It uses strong mathematical algorithms and so your traffic to server always stays encrypted. When site doesn't utilize HTTPS encryption, your traffic goes through HTTP protocol, which delivers everything you do to that site in plain text. The problem with that is that your ISP (or a VPN if you're using it) can see everything that you do on that site, also if anyone snoops your traffic they can read everything that you send. This is the issue only when the key-lock is striked with red line (or sometimes has some other warning sign), so generally if you have anyone that snoops on you, they can only see which sites you connect to, but not what you do on it. That's what HTTPS encryption is used to defend against.

In addition, when you find non-secured site, that often means that people who run it didn't put much effort into it or simply don't know how to do it, or are maybe hackers. If you want to help keep Internet secure, you can always contact the owners of those websites and advise them to encrypt their websites.

Modified by Lomi491

more options

Lomi491-Happy 2021!!

Thank you for the prompt response-The short answer is sufficient!

Even though I do not enter personal info on any non-secure website, I feel more confident now visiting and viewing information on them.

more options

This is probably about the presence of mixed content (usually images) that come over an open HTTP connection.

You can check the Web Console for details about what content this is about (filter for mixed).