ubuntu-apps-bugs team mailing list archive

Thread
Date

[Bug 1560673] Re: Dangerous content?

To: ubuntu-apps-bugs@xxxxxxxxxxxxxxxxxxx
From: Olivier Tilloy <olivier.tilloy@xxxxxxxxxxxxx>
Date: Tue, 03 May 2016 09:17:53 -0000
Reply-to: Bug 1560673 <1560673@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

I’m seeing this warning in the console when browsing to
myfitnesspal.com:

[JS] (https://www.myfitnesspal.com/:361) Mixed Content: The page at
'https://www.myfitnesspal.com/' was loaded over HTTPS, but requested an
insecure image
'http://d34yn14tavczy0.cloudfront.net/images/ua_shop_logo.png'. This
content should also be served over HTTPS.

This explains the warning in the address bar. Loading insecure content
over a secure connection kind of defeats the point of serving content
over HTTPS in the first place.

The second warning is completely unrelated, it’s due to that particular
website parsing the UA string to detect what browser it’s running in, an
error-prone and deprecated (although still widely used) practice. Not
much we can do about that, unfortunately.

** Changed in: webbrowser-app (Ubuntu)
       Status: New => Invalid

-- 
You received this bug notification because you are a member of Ubuntu
Apps bug tracking, which is subscribed to webbrowser-app in Ubuntu.
https://bugs.launchpad.net/bugs/1560673

Title:
  Dangerous content?

Status in webbrowser-app package in Ubuntu:
  Invalid

Bug description:
  Why the web browser warns me about a dangerous content? I checked in
  three other browsers and there was no problem?

  If the problem exists I should be able to find out what the problem
  is. Especially that I'm not visiting any underground home made
  website.

  I took the photo while visiting www.myfitnesspal.com and got a
  security warning

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/webbrowser-app/+bug/1560673/+subscriptions

References

[Bug 1560673] [NEW] Dangerous content?
From: GTriderXC, 2016-03-22