Bug#593500: iceweasel: All https sites show up as "only partially encrypted" (no colorful address bar indication of security)
Mike Hommey
mh at glandium.org
Wed Aug 18 19:23:54 UTC 2010
On Wed, Aug 18, 2010 at 11:08:40AM -0700, Josh Triplett wrote:
> Package: iceweasel
> Version: 4.0~b3-0
> Severity: important
>
> Visiting secure sites such as https://www.kernel.org/ ,
> https://www.debconf.org/ , or https://www.gandi.net/ , I noticed that
> the address bar did not give the usual blue or green indication of
> security. Clicking on the site identity button brought up a message
> about "only partially encrypted", the same message that usually comes up
> when a secure site references some resources from insecure sites.
> However, I confirmed that the sites referenced nothing from non-https
> URIs. Also, when I brought up the site details dialog (ctrl-i), it did
> not provide the usual "View Certificate" button. I could reproduce this
> even in safe mode.
>
> I downgraded to 3.6.7-1 from experimental, and at first still observed
> this problem, but forcing a full refresh (ctrl-shift-r) made the sites
> show up as secure. Perhaps the newer version had cached the security
> information as bad and the older version successfully read that cache.
Mmmm... all three are blue or green for me on 4.0~b3...
Does it show something in the error console?
Mike
More information about the pkg-mozilla-maintainers
mailing list