Can someone look at my site with Firefox...

Client Joined: Jul 18, 2003 Posts: 977

I do not have it and I will probably get it but I am not aware of any problems people might be having with it and Firefox... I would like to fix any errors so that I can be part of the "In" crowd. thank you...
http://www.gamersroam.com

Worker Joined: Aug 06, 2004 Posts: 192

I just looked and didn't see anything wrong. I looked at the main page and the forums with Firefox.

Posted: Fri Nov 19, 2004 2:29 pm

Why don't you simply download and run Firefox? It's in final release now and it's sexy as heaven. It's now also out of BETA and in official 1.0 version.

Only registered users can see links on this board! Get registered or login!

Posted: Fri Nov 19, 2004 3:43 pm

64bitguy wrote:

Why don't you simply download and run Firefox? It's in final release now and it's sexy as heaven. It's now also out of BETA and in official 1.0 version.

Only registered users can see links on this board! Get registered or login!

I know I know... I am not hip or cool. I just don't have it yet...

Posted: Fri Nov 19, 2004 3:43 pm

Hey anyone know if there is a download manager available for it like Opera has that supports resuming ect... ?

Posted: Fri Nov 19, 2004 3:55 pm

Okay... I am now posting this through my shiny new firefox browser.... happy? Seriously it works real nice.... except for when I put in passwords it says that they are not being encrypted and could be picked up by a third party... is this true?

Posted: Fri Nov 19, 2004 4:04 pm

I noticed that once too on one site I have all login functions setup to use https connections and all admin functions require a https connection. But anyway it gave me that message even though it was an https connection.

But yeah if its not an https connection the password is passed around the internet unencoded.

Posted: Fri Nov 19, 2004 4:06 pm

Blith... That's the case with any password posted to a non-https page, just like Internet Explorer. Also, I've found that some scripts that are supposed to post to https pages actually start on non-https pages and that too will generate the notification (the session must be secure before the content can be posted).

As for Downloads:
https://update.mozilla.org/extensions/showlist.php?application=firefox&version=1.0&numpg=10&category=Download%20Tools

Posted: Fri Nov 19, 2004 4:25 pm

Hmn I am not convinced there isn't a bug there. The page is encrypted but the connection is not is the message it gives me which makes absolutely no sense to me if the url is https it is a encrypted connection yes? My page url is https and the form is intuitive and redirects to a non encrypted page. IE it does its job of protecting the users Identity and Password during login. Are your saying the session and cookie should be forced to continue under the slower encrypted connection when there is no sensitive information being transmitted other then an encoded cookie ?

Posted: Fri Nov 19, 2004 4:35 pm

No, but I am saying that if you forward to a non-encrypted page, you'll get either the insecure error, a form post error, or a warning that you are being redirected to a non-encrypted page (depending on the handler). Further, intuititve is fine, but a secure session cookie cannot exist in a non-secure environment. That's a security violation that will generate either an error or a warning.

I wouldn't worry about submitting information to a nuke site, but I would for shopping. In those cases, your session should be secure from start to finish.

Posted: Fri Nov 19, 2004 4:57 pm

Thats why I'm asking it is a oscommerce based site and I'm still unsure there is a valid reason for that particular message to be displayed. If there is its something that should be addressed. If not the message should be as you say more accurate and let the user know they are being redirected to a none secure page. I'm going to do some surfing over at the osc forums and see if its been discussed there at all.

Posted: Fri Nov 19, 2004 5:06 pm

I see its been brought up but thats about it I don't think anyone has verified it either way yet as a legitimate concern or a firefox bug.
http://forums.oscommerce.com/index.php?showtopic=121952&hl=
In my case I have the catalog set to use http urls I'll have to test it and see if the message disappears if I set it to force https for the catalog but that makes no sense not even major sites do that.