I've recently decided to give this hosts
file a try.
Just after adding these entries on my machine I've noticed that HTTPS connection is insecure on banking sites and PayPal. Chrome shows a red padlock and warns about insecure scripts. I've tried to find mixed content scripts using Inspector, but I haven't found any - all scripts are either loaded over HTTPS or added by Chrome extensions.
Removing new entries from the hosts
file fixes this. What's interesting is that only some machine+browser pairs are affected:
- My main Windows 10 machine, Chrome 47: ✘ insecure
- Same machine, Chrome updated to 48: ✘ insecure
- Same machine, another instance of Chrome 47, no extensions: ✘ insecure
- Same machine, Firefox 43: ✔ secure
- Android 5.1 smartphone, Chrome 47: ✔ secure
- Another Windows 10 machine, Chrome 47: ✘ insecure
What's wrong with Chrome on Windows? How do I diagnose which entry causes this issue? Is there any better method than bisecting that hosts
file?
Here's mbank.pl certificate information from Chrome 47:
It seems that all four affected sites that I'm aware of:
have one thing in common: they use Symantec certificate. SSL Labs test confirms that it's correct.
hosts
entries. I've added cert details.