Firefox is about to mark all HTTP pages as unsafe

When the number of websites switches to HTTPS a lot, browsers will soon mark every HTTP page as 'Not Secure' by default.

Firefox is about to mark all HTTP pages as unsafe

When the number of websites switches to HTTPS a lot, browsers will soon mark every HTTP page as 'Not Secure' by default.

The current version of Firefox Nightly Edition (version 59) has the option, but if you turn it on, there will be an icon indicating that the current website is not safe. Currently this icon has a slash on the lock - which is used to refer to HTTPS pages.

Firefox is about to mark all HTTP pages as unsafe Picture 1
Red lock and slash icon when loading HTTP page

'It seems that many people have switched to HTTPS,' said Mozilla software engineer Richard Barnes. 'We will soon be preparing to mark the remaining pages as unsafe'.

A hidden setting on Firefox Nightly 59

In the request to add this feature last year, Barnes wrote 'The first step is to add an icon for unsafe pages'. Mozilla approved Barnes and Firefox Nightly's request for a hidden setting named security.insecure_connection_icon, enabled. When this feature is turned on, the browser will display the icon as mentioned above. To enable this feature, go to about: config, find and double-click on it.

Firefox is about to mark all HTTP pages as unsafe Picture 2
Enable notification display when accessing HTTP pages

Since Barnes made a request last year, many websites have switched to HTTPS. According to Let's Encrypt's data, in November 2017, 67% of websites on Firefox used HTTPS while last year was only 45%.

Many security experts and UI designers think that using such alerts for HTTP pages will lead to bad effects, making users familiar and ignoring them. But Barnes said that if many pages turn to HTTPS, there won't be many hit sites, Not Secure.

Currently Chrome and Firefox only alert HTTP pages when users log in or enter credit card information. Each browser also has a different display. Firefox notifies you right on the form frame you are filling in, and Chrome adds Not Secure next to the address bar.

See more:

What is HTTPS? and why is it needed for your site
How to login to multiple Facebook accounts on Firefox
Turn Firefox Quantum into rainbow colors change color by hour

Things you should know about HTTP / 2 protocol
the http version we are using today is http / 1.1, which has been around since 1999, and will soon be replaced by a newer standard, http / 2. this update promises to improve the way browsers and servers communicate with each other, thereby providing faster data transfer speeds while minimizing the power needed to handle access requests.
URL encoding in HTTP
http urls can only be sent via the internet by using ascii character sets, which often contain characters outside the ascii character set. therefore unsafe characters must be swapped with a% followed by two hexadecimal digits.
What to do when Firefox crashes?
like other browsers, sometimes you use firefox to surf the web and experience problems such as cracking your browser, or restarting, and can't open web pages even though the network connection is normal, ...
How to save Firefox websites as PDF
currently, all web browsers have supported you to save websites as pdf files. it's easy to save a webpage as a pdf in firefox, just as you can save a webpage in chrome as a pdf file.
What is Unsafe Rust?
unsafe rust gives you more control over memory. the article will give you everything you need to know about using unsafe rust and understand the risks of using it.
Security in HTTP
http is used for communication over the internet, so application programmers, information providers, and users should be aware of the protection limitations in http / 1.1.
Caching in HTTP
http is typically used for distributed information systems, where performance can be enhanced by using cached feedback. the http / 1.1 protocol includes several elements that are intended to perform caching tasks.
What is HTTP
http is an application-level protocol for distribution, collaboration, multimedia information systems, which is the foundation for data communication for www (eg internet) since 1990. http is a common protocol and stateless that can be used for other purposes as well as the scaling of request methods, error codes and its header.
Request (HTTP) in HTTP
a client sends an http request to a server in the form a request message that includes the following format.
Chrome 68 will officially prioritize the SSL protocol
according to google's announcement, chrome browser version 68 will be released in july 2018. and starting from this version, google will officially mark websites that do not use ssl as unsafe.
What is HTTP Flood?
http floods are a type of ddos attack in which an attacker exploits seemingly legitimate http get or post requests to attack a web server or application.
Parameters in HTTP
this chapter lists some of the http protocol parameters and their syntax by which they are used in communication.