Miks Minu brauser ei ütle, et turvaline veebisait pole täiesti turvaline?

Sisukord:

Miks Minu brauser ei ütle, et turvaline veebisait pole täiesti turvaline?
Miks Minu brauser ei ütle, et turvaline veebisait pole täiesti turvaline?

Video: Miks Minu brauser ei ütle, et turvaline veebisait pole täiesti turvaline?

Video: Miks Minu brauser ei ütle, et turvaline veebisait pole täiesti turvaline?
Video: Начало работы с QLC+ Управление цветомузыкой с компьютера. Как управлять светом. - YouTube 2024, November
Anonim
Kõigi probleemidega võib Internetti tulla, on alati hea mõte ühendada võimalikult turvaliselt. Aga mida teete, kui teie brauser ütleb, et turvaline veebisait ei ole täielikult turvaline? Tänane SuperUseri Q & A postitus vastab muretud lugeja küsimusele.
Kõigi probleemidega võib Internetti tulla, on alati hea mõte ühendada võimalikult turvaliselt. Aga mida teete, kui teie brauser ütleb, et turvaline veebisait ei ole täielikult turvaline? Tänane SuperUseri Q & A postitus vastab muretud lugeja küsimusele.

Tänane küsimuste ja vastuste seanss jõuab meile viisakalt SuperUserini - Stack Exchange'i ja kogukonnapõhiste Q & A veebisaitide rühmitusse.

Küsimus

SuperUseri lugeja David Starkey tahab teada saada, miks tema brauser ütleb, et turvaline veebisait ei ole täielikult turvaline:

I was accessing Pandora via SSL and noticed a few icons by the URL. First is this exclamation point in a triangle, indicating the page is not fully secure.

Next to it is a shield. This one says content that is not secure is blocked.
Next to it is a shield. This one says content that is not secure is blocked.
These statements, at least to me, seem to contradict each other. Can someone explain this to me? Is my connection secure or not? I accessed the Pandora website using Firefox 30.0 on Windows 7. I also have HTTPS Everywhere installed.
These statements, at least to me, seem to contradict each other. Can someone explain this to me? Is my connection secure or not? I accessed the Pandora website using Firefox 30.0 on Windows 7. I also have HTTPS Everywhere installed.

Mis siin toimub? Kas Davidi ühendus Pandora veebisaidiga on turvaline või mitte?

Vastus

SuperUseri panustaja redburnil on meile vastus:

This is called a “mixed content” page. From the Mozilla Developer Network (Mixed Content):

If the HTTPS page includes content retrieved through regular, cleartext HTTP, then the connection is only partially encrypted: the unencrypted content is accessible to sniffers and can be modified by man-in-the-middle attackers, and therefore the connection is not safeguarded anymore. When a webpage exhibits this behavior, it is called a mixed content page.

The statements are not contradictory, but complementary, and a little confusing perhaps. The first says the page itself is not fully secure because it contains unencrypted elements (all web browsers will notify you of this), whereas the second notes that these elements have been automatically blocked by Firefox.

If Firefox did not block the unencrypted elements, then strictly speaking, the page would not be secure.

HTTPS Everywhere does not guarantee a secure connection. It will only try to force HTTPS whenever it is available; if it is not, then there is nothing a user or browser can do about it outside of blocking the unsecure content.

Kas teil on seletamiseks midagi lisada? Helistage kommentaarides. Kas soovite lugeda rohkem vastuseid teistelt tech-savvy Stack Exchange'i kasutajatelt? Tutvu täieliku arutelu teemaga siit.

Soovitan: