After updating to the latest version of Firefox ( Version 52 ) I am getting a mildly annoying message box warning me that my login page - the SDMB - is not a secure connection. It lets me continue with a mild rebuke and a suggestion that I contact the web administrator to fix this.
It is only a mild annoyance that does not impend my foray into the SDMB but I was wondering if there a remediation step I can try.
No, not really. It’s complaining about the connection because it’s not encrypted. The SDMB doesn’t have a valid certificate (you get a cloudfront cert when you visit the HTTPS site), and then it redirects you to the non-encrypted site anyway.
So, its out of your hands.
SDMB should fix this. It costs nothing to become https these days, and is a totally sensible measure on a forum like this.
The certificate is free, yes. But they use Amazon Cloudfront, and are charged for HTTPS traffic. I don’t know if it’s the same price as HTTP traffic or not.
I do know that the $600 upcharge is only for a dedicated IP, which is only needed so you can support Internet Explorer 6. So this should not be an issue.
It’s a feature added in Firefox 52. The passwords are just as (in)secure as they’ve always been. But Firefox is really on the HTTPS everywhere bandwagon.
I don’t think you should have to rebuke anything, though. Your username should still be there, just below the notice. Though it can be a easy to miss, as the notice is a bit large because it’s trying to fit the whole message in the size of the login box.
Now whether Firefox will make it harder in the future is unknown.