Subscribe to William Computer Blog : Entries & Del.icio.us. Add this blog to Technorati Favorites

Firefox unencrypted warning

I was logging into a secured website containing private information. Firefox then warned me with the following message:

Although this page is encrypted, the information you have entered is to be sent over an unencrypted connection and could easily be read by third party.

I was pretty sure the login page is on a secure http connection (https). See picture below:

Screenshot Firefox address bar on secure https

After searching on google, I found out that the login form is submitted (action) to a JavaScript. Firefox does not have any idea what the JavaScript is doing to the data sent.

1 comments so far

1. Richardus 8 Jun 2005

This happens when I use sites like hotmail. And (as you found out) is due to those sites use JavaScript, not asp or other languages that are more secure.