Цей вебсайт матиме обмежену функціональність, доки ми проводимо його обслуговування для поліпшення роботи. Якщо прочитана стаття не розв'язала вашу проблему і ви хочете поставити питання, наша спільнота підтримки з радістю допоможе вам на @FirefoxSupport у Twitter та /r/firefox на Reddit.

Шукати в статтях підтримки

Остерігайтеся нападів зловмисників. Mozilla ніколи не просить вас зателефонувати, надіслати номер телефону у повідомленні або поділитися з кимось особистими даними. Будь ласка, повідомте про підозрілі дії за допомогою меню “Повідомити про зловживання”

Докладніше

Ця тема перенесена в архів. Якщо вам потрібна допомога, запитайте.

How do I know if sensitive info is being encrypted on a partially encrypted site?

  • 2 відповіді
  • 4 мають цю проблему
  • 1 перегляд
  • Остання відповідь від cor-el

more options

The checkout page of a site shows with neither blue or green background for an https site. The security properties in FireFox 6.0.1 show "This site does not supply identity information" and "Your connection to this site is only partially encrypted, and does not prevent eavesdropping."

Would it be possible for FireFox to be able to indicate which objects are encrypted on a page?

If not, why would a vendor want to only partially encrypt their checkout page? Or is this just a poorly designed site? It is bad for their online business as it is a huge reason I would not use their site.

If it is common and industry accepted practice to have only partial encrypted pages, I would feel more comfortable knowing which fields/objects were encrypted. (specifically my personal information in a form).

Best regards

The checkout page of a site shows with neither blue or green background for an https site. The security properties in FireFox 6.0.1 show "This site does not supply identity information" and "Your connection to this site is only partially encrypted, and does not prevent eavesdropping." Would it be possible for FireFox to be able to indicate which objects are encrypted on a page? If not, why would a vendor want to only partially encrypt their checkout page? Or is this just a poorly designed site? It is bad for their online business as it is a huge reason I would not use their site. If it is common and industry accepted practice to have only partial encrypted pages, I would feel more comfortable knowing which fields/objects were encrypted. (specifically my personal information in a form). Best regards

Усі відповіді (2)

more options

See - https://support.mozilla.com/en-US/kb/Site+Identity+Button

If you click on the More Information button in the "doorhanger" that appears when you click on the S-I-B, you can open Page Info. Between the Media tab and the Links tab you can see exactly what isn't encrypted - has an http address rather than https.

more options

If there is content on a website that comes via a http connection then you get a partially encrypted connection and the Site Identity Button doesn't show blue or green.

You can see this on this forum is someone attaches an image that is on another site hosted and has a http: protocol link.
If data is send from a secure to an insecure link then Firefox will give a warning that can't be suppressed (Hotmail and MSN can show this).

It is up to you what to do in cases like this as it is hard to tell what content or links is causing this to happen.
You can contact the website if you think that it shouldn't happen (e.g. if money is involved).