Firefox Insecure Password Warning - SLUniverse Forums
Navigation » SLUniverse Forums > SLU Related > Forum Feedback » Firefox Insecure Password Warning


 
Reply
 
LinkBack Thread Tools Display Modes
Old 03-14-2017, 04:57 PM   #1 (permalink)
Senior Member

*SLU Supporter*
 
Jolene Benoir's Avatar
What time is it?
 
Join Date: Dec 2010
Posts: 7,890
My Mood:
SL Join Date: 2007
Firefox Insecure Password Warning

Is anyone else seeing this? Firefox just updated for me to version 52, so when I sign into SLU I see this every time now. It links to this page for a description on why. It even does it on my router sign in page.





https://support.mozilla.org/t5/Prote...fox/ta-p/27861
Jolene Benoir is offline   Reply With Quote
Old 03-14-2017, 08:45 PM   #2 (permalink)
Senior Member
 
Wanda Belinda's Avatar
 
Join Date: Oct 2016
Posts: 1,739
They want you to change your bookmark to the slu forums to https:// instead of http:// .
Wanda Belinda is offline   Reply With Quote
3 Users Said Thanks :
Old 03-14-2017, 08:50 PM   #3 (permalink)
子猫女王
 
Katheryne Helendale's Avatar
(Loading...)
 
Join Date: Oct 2009
Location: Right... behind... you...
Posts: 4,995
My Mood:
SL Join Date: 5/20/2008
Client: LL Viewer V3

Awards: 1
SLU Creepy Avatar Competition 2014 Participant 
Quote:
Originally Posted by Wanda Belinda View Post
They want you to change your bookmark to the slu forums to https:// instead of http:// .
Careful! Doing so will break the site. It will still largely function, but it won't look right at all.
__________________
When the power of love overcomes the love of power,
the world will know peace.
-J. Hendrix

Katheryne Helendale is online now   Reply With Quote
1 User Agreed:
Old 03-14-2017, 08:59 PM   #4 (permalink)
Senior Member
 
Wanda Belinda's Avatar
 
Join Date: Oct 2016
Posts: 1,739
Quote:
Originally Posted by Katheryne Helendale View Post
Careful! Doing so will break the site. It will still largely function, but it won't look right at all.
It look fine to me unless I go out of the forums to the slu home page or something.
Wanda Belinda is offline   Reply With Quote
1 User Said Thanks:
Old 03-14-2017, 09:35 PM   #5 (permalink)
子猫女王
 
Katheryne Helendale's Avatar
(Loading...)
 
Join Date: Oct 2009
Location: Right... behind... you...
Posts: 4,995
My Mood:
SL Join Date: 5/20/2008
Client: LL Viewer V3

Awards: 1
SLU Creepy Avatar Competition 2014 Participant 
Weird. It completely stripped the skin (Fat Pack SLU) for me on Chrome.
Katheryne Helendale is online now   Reply With Quote
1 User Said Thanks:
Old 03-14-2017, 09:39 PM   #6 (permalink)
Senior Member
 
Wanda Belinda's Avatar
 
Join Date: Oct 2016
Posts: 1,739
Quote:
Originally Posted by Katheryne Helendale View Post
Weird. It completely stripped the skin (Fat Pack SLU) for me on Chrome.
Eww, you're right! It's broken with that skin. I use blue slu which works fine.
Wanda Belinda is offline   Reply With Quote
1 User Said Thanks:
1 User Agreed:
Old 03-14-2017, 09:47 PM   #7 (permalink)
子猫女王
 
Katheryne Helendale's Avatar
(Loading...)
 
Join Date: Oct 2009
Location: Right... behind... you...
Posts: 4,995
My Mood:
SL Join Date: 5/20/2008
Client: LL Viewer V3

Awards: 1
SLU Creepy Avatar Competition 2014 Participant 
Okay, so, yeah. The other skins work, the Fat Pack skin is broken on secure connections.
Katheryne Helendale is online now   Reply With Quote
1 User Said Thanks:
Old 03-15-2017, 04:25 AM   #8 (permalink)
Senior Member

*SLU Supporter*
 
Jolene Benoir's Avatar
What time is it?
 
Join Date: Dec 2010
Posts: 7,890
My Mood:
SL Join Date: 2007
Quote:
Originally Posted by Wanda Belinda View Post
They want you to change your bookmark to the slu forums to https:// instead of http:// .
Quote:
Originally Posted by Katheryne Helendale View Post
Careful! Doing so will break the site. It will still largely function, but it won't look right at all.
Yep, it breaks it for me, too. What am I doing wrong? Perhaps typing it incorrectly?

https://www.sluniverse.com is what I am trying now and this is the result.

Jolene Benoir is offline   Reply With Quote
Old 03-15-2017, 09:15 AM   #9 (permalink)
Senior Member
 
stora's Avatar
 
Join Date: Jan 2010
Posts: 1,414
My Mood:
SL Join Date: July 2003
Quote:
Originally Posted by Jolene Benoir View Post
Yep, it breaks it for me, too. What am I doing wrong? Perhaps typing it incorrectly?

https://www.sluniverse.com is what I am trying now and this is the result.

If you click on show site information just to the left of the web address, it will tell you that part of the page is insecure (pictures etc) . You can disable protection for now if you want to display the page correctly

Last edited by stora; 03-15-2017 at 09:17 AM. Reason: updated with correct info
stora is offline   Reply With Quote
1 User Said Thanks:
Old 03-15-2017, 12:11 PM   #10 (permalink)
Senior Member

*SLU Supporter*
 
Jolene Benoir's Avatar
What time is it?
 
Join Date: Dec 2010
Posts: 7,890
My Mood:
SL Join Date: 2007
Quote:
Originally Posted by stora View Post
If you click on show site information just to the left of the web address, it will tell you that part of the page is insecure (pictures etc) . You can disable protection for now if you want to display the page correctly
Thank you. I'm a little confused still. When the page is loaded in https, if I click the lock it says that parts of the page are not secure, such as images. If I then click to disable the protection, it changes the lock to the insecure version, and puts a line through the https, and informs me that password and such are not secure. Wouldn't this be the same then, as loading the regular http page?

If I leave it as is, and attempt to sign in, with the protection still enabled, a little box comes up stating:

The information you have entered on this page will be sent over an insecure connection and could be read by a third party.

Are you sure you want to send this information?


So, in essence, it is saying it is insecure whether it's loaded via http or https.
Jolene Benoir is offline   Reply With Quote
Old 03-15-2017, 12:18 PM   #11 (permalink)
Senior Member
 
Wanda Belinda's Avatar
 
Join Date: Oct 2016
Posts: 1,739
Quote:
Originally Posted by Jolene Benoir View Post
Thank you. I'm a little confused still. When the page is loaded in https, if I click the lock it says that parts of the page are not secure, such as images. If I then click to disable the protection, it changes the lock to the insecure version, and puts a line through the https, and informs me that password and such are not secure. Wouldn't this be the same then, as loading the regular http page?

If I leave it as is, and attempt to sign in, with the protection still enabled, a little box comes up stating:

The information you have entered on this page will be sent over an insecure connection and could be read by a third party.

Are you sure you want to send this information?


So, in essence, it is saying it is insecure whether it's loaded via http or https.
The sign in box is sent securely when you are using https. It is bad practice to include elements of the page such as images that are not https in a secure page. You could for instance, click on an image thinking you were on a secure connection. So they are warning you. Depending on what SLU skin you are using though you might have to use http: for the page to render correctly.
Wanda Belinda is offline   Reply With Quote
Old 03-15-2017, 08:20 PM   #12 (permalink)
子猫女王
 
Katheryne Helendale's Avatar
(Loading...)
 
Join Date: Oct 2009
Location: Right... behind... you...
Posts: 4,995
My Mood:
SL Join Date: 5/20/2008
Client: LL Viewer V3

Awards: 1
SLU Creepy Avatar Competition 2014 Participant 
Yep, if you are using the default (FatPack) skin on SLU, it will not render when using https.
Katheryne Helendale is online now   Reply With Quote
Old 03-19-2017, 02:00 AM   #13 (permalink)
Nan
Senior Member
 
Nan's Avatar
"I feel like SL but BETTER"
 
Join Date: Jan 2012
Posts: 958
My Mood:
Can this be fixed on Slu's end?
Nan is offline   Reply With Quote
Old 03-19-2017, 08:02 AM   #14 (permalink)
SUPER BANNED

*SLU Supporter*
 
Free Xue's Avatar
I'm not finished.
 
Join Date: May 2009
Posts: 50,994
My Mood:
SL Join Date: May 2008
Blog Entries: 10

Awards: 2
SLU Creepy Avatar Competition 2014 Participant 
Quote:
Originally Posted by Nan View Post
Can this be fixed on Slu's end?
Of course it can. Go ahead, ask Cris to spend a lot of time on it...
__________________
Mass starvation of virtual bunnies due to a cease and desist order. Now THAT is Second Life!
la lucha sigue...
Free Xue is offline   Reply With Quote
1 User Laughed:
Old 03-19-2017, 07:47 PM   #15 (permalink)
In ur threadz...
 
Beezle Warburton's Avatar
...trollin ur postz!
 
Join Date: Aug 2007
Location: USA
Posts: 16,943
My Mood:
SL Join Date: October 24, 2006
Client: Frestorm, Singularity, Official
Blog Entries: 3

Awards: 1
SLU Creepy Avatar Competition 2014 Participant 
Just disable the warning and possibly some of the mixed-content blocking in Firefox SLU isn't the only site that stuff breaks.

Don't currently have Firefox, but something similar to my Seamonkey settings should be under Tools -> Options -> Security. Unless they moved shit around *again* in the interface.

FWIW, for seamonkey:
edit -> preferences -> SSL/LTS

Attached Thumbnails
Firefox Insecure Password Warning-seamonkey-security.png  
__________________
Sent from my Thingamajig using Whatsits.

"Privatize" Windows10: Clara's Techstuff

Support SLU with stuff for your RL: https://society6.com/sluniverse

Squirrel!

Hakuna Potato

Last edited by Beezle Warburton; 03-19-2017 at 07:58 PM.
Beezle Warburton is offline   Reply With Quote
Old 03-19-2017, 07:51 PM   #16 (permalink)
Peeps Tsar
 
Cristiano's Avatar
#imalwayswithher
 
Join Date: Jun 2007
Location: Miami, FL
Posts: 35,432
My Mood:
SL Join Date: Dec 2002
Business: ANOmations
Client: Viewer 2
Blog Entries: 18
Send a message via Yahoo to Cristiano Send a message via Skype™ to Cristiano
It is a new annoying thing Firefox has started doing - nothing has changed with the site. Google and Mozilla are pushing everyone to use https: on everything. The amount of effort to adjust all of the pages is not worth the effort for a simple forum login. You can disable to warnings in Firefox - they annoyed the hell out of me on every site when they added them until I figured out how to turn it off.
__________________
"A certain darkness is needed to see the stars" ~ Osho




Cristiano is offline   Reply With Quote
2 Users Agreed:
Old 03-19-2017, 08:38 PM   #17 (permalink)
Emergency Mustelid
 
Argent Stonecutter's Avatar
 
Join Date: Sep 2009
Posts: 18,878
Comic Sans isn't good enough any more?
Attached Thumbnails
Firefox Insecure Password Warning-untitled5.png  
__________________
Argent Stonecutter -- Skyhook Station -- Coonspiracy Store

"And now I'm going to show you something really cool."


The previous is a cybernetic datum published - in direct contravention of DoD Regulation #229RR3X3 - as being conducive to the physical, psychological and/or social well-being of the population.
Argent Stonecutter is offline   Reply With Quote
Old 03-19-2017, 09:34 PM   #18 (permalink)
In ur threadz...
 
Beezle Warburton's Avatar
...trollin ur postz!
 
Join Date: Aug 2007
Location: USA
Posts: 16,943
My Mood:
SL Join Date: October 24, 2006
Client: Frestorm, Singularity, Official
Blog Entries: 3

Awards: 1
SLU Creepy Avatar Competition 2014 Participant 
Quote:
Originally Posted by Argent Stonecutter View Post
Comic Sans isn't good enough any more?
there's a screencap of the whole desktop in "no-body" cares. The horror font seemed to go with the cybernetic-chainsaw weilding catgirl on the wallpaper

Beezle Warburton is offline   Reply With Quote
1 User Laughed:
Old 03-20-2017, 01:32 AM   #19 (permalink)
Nan
Senior Member
 
Nan's Avatar
"I feel like SL but BETTER"
 
Join Date: Jan 2012
Posts: 958
My Mood:
I had been loading my amazon cart , going to slur clicking smile to donate then logging into amazon again.

I am not enough of a cypher kitten to know if going from unsecured and warning slu page to amazon gives the bad guys an advantage to accessing my amazon stuffs, versus skipping the smile step.
Nan is offline   Reply With Quote
Old 03-20-2017, 06:01 AM   #20 (permalink)
Senior Member
 
Wanda Belinda's Avatar
 
Join Date: Oct 2016
Posts: 1,739
Quote:
Originally Posted by Nan View Post
I had been loading my amazon cart , going to slur clicking smile to donate then logging into amazon again.

I am not enough of a cypher kitten to know if going from unsecured and warning slu page to amazon gives the bad guys an advantage to accessing my amazon stuffs, versus skipping the smile step.
No, nothing to worry about there.
Wanda Belinda is offline   Reply With Quote
Old 03-20-2017, 03:37 PM   #21 (permalink)
Ginger Supremacist
 
Ramen Jedburgh's Avatar
Heya ^_^
 
Join Date: Apr 2010
Location: Illinois, USA
Posts: 4,733
My Mood:
SL Join Date: 3/9/2006
Client: Firestorm
Quote:
Originally Posted by Cristiano View Post
It is a new annoying thing Firefox has started doing - nothing has changed with the site. Google and Mozilla are pushing everyone to use https: on everything. The amount of effort to adjust all of the pages is not worth the effort for a simple forum login. You can disable to warnings in Firefox - they annoyed the hell out of me on every site when they added them until I figured out how to turn it off.
Yeah, as admirable as the idea of HTTPS everywhere is, it's just not worth it on a lot of smaller sites and it's a pain to set up and maintain properly. It irks me that Google and others are kind of forcing this idea on everywhere without considering this.

There's LetsEncrypt which is free but even that has a lot of little annoying caveats for setting it up and it could break existing links.

Not to metnion that as far as I can tell it doesn't work when using something like Cloudflare (used to alleviate traffic loads on sites) though that may be I had been setting things up wrong in my experiences. Basically if you use Cloudflare routing on a site, the site shows up as a Cloudflare IP which doesn't match your certificate and it shows up as insecure. Something like that.
__________________
--
Ramen Jedburgh

http://allaroundthegrid.blogspot.com/
Ramen Jedburgh is offline   Reply With Quote
Old 03-20-2017, 05:11 PM   #22 (permalink)
DILLIGAFF
 
WolfEyes's Avatar
Society's Lost Bird
 
Join Date: Oct 2009
Posts: 10,729
SL Join Date: April 2004
Not having any problems with using IE other than the usual weirdness of something counting my emote button clicks twice or sending me to an error page that has nothing to do with clicking an emote button.
__________________
This is the truth.
Mitakuye oyasin.
To all my relations, keep dancing.
Believe or you will not see.
WolfEyes is offline   Reply With Quote
Old 03-20-2017, 06:19 PM   #23 (permalink)
Voice of Reason
 
Spirits Rising's Avatar
 
Join Date: Jun 2014
Location: Akron, Ohio
Posts: 1,309
My Mood:
SL Join Date: 10/30/2006
Client: Firestorm/CoolVL
Send a message via Skype™ to Spirits Rising
Quote:
Originally Posted by WolfEyes View Post
Not having any problems with using IE other than the usual weirdness of something counting my emote button clicks twice or sending me to an error page that has nothing to do with clicking an emote button.
Adding Opera and Vivaldi to the above.
Spirits Rising is offline   Reply With Quote
Old 03-20-2017, 11:07 PM   #24 (permalink)
子猫女王
 
Katheryne Helendale's Avatar
(Loading...)
 
Join Date: Oct 2009
Location: Right... behind... you...
Posts: 4,995
My Mood:
SL Join Date: 5/20/2008
Client: LL Viewer V3

Awards: 1
SLU Creepy Avatar Competition 2014 Participant 
Quote:
Originally Posted by WolfEyes View Post
Not having any problems with using IE other than the usual weirdness of something counting my emote button clicks twice or sending me to an error page that has nothing to do with clicking an emote button.
Quote:
Originally Posted by Spirits Rising View Post
Adding Opera and Vivaldi to the above.
No problems with Chrome, either. It must be strictly a Firefox thing, for now.
Katheryne Helendale is online now   Reply With Quote
2 Users Agreed:
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Trackbacks are Off
Pingbacks are On
Refbacks are On




SEO by vBSEO