Avatar

SSL and external http Images (General)

by Auge ⌂, Sunday, February 25, 2018, 14:24 (2224 days ago) @ Magma

Hello

My site uses SSL so the padlock shows for all of my site but I noticed when a user embeds an Image that uses http url from another site the page becomes unsecure with no padlock when viewing the post or opening the full thread.

Is that normal behaviour?

Yes it is and it's no issue with the forum script, it's the normal behaviour of all actual browsers. Nowadays a secure connection counts as insecure, when parts of the pages data gets requested using not secure connections. That's because on that way a man in the middle can reconstruct a more or less great part of the data snd on that way the source of the rest of the loaded data (not the encrypted data itself but their origin).

Thatswhy, as Milo stated because of the mixed requests, the browsers classify such page requests generally as insecure. Nothing we can do about.

Tschö, Auge

--
Trenne niemals Müll, denn er hat nur eine Silbe!


Complete thread:

 RSS Feed of thread