Questions tagged [https]
HTTPS stands for HTTP Secure and is a combination of HTTP and SSL/TLS (Secure Sockets Layer/Transport Layer Security) and is used to provide an encrypted connection to a website.
885
questions
240
votes
9
answers
931k
views
How do I disable the warning Chrome gives if a security certificate is not trusted?
I want to know if it's possible to disable the warning you get in Chrome when you try to go to some HTTPS site that doesn't have a trusted certificate.
I have a few sites in my bookmarks that use ...
136
votes
3
answers
25k
views
Why does my browser think that https://1.1.1.1 is secure?
When I visit https://1.1.1.1, any web browser I use considers the URL to be secure.
This is what Google Chrome shows:
Normally, when I try to visit an HTTPS site via its IP address, I get a security ...
103
votes
7
answers
30k
views
Is "HTTPS Everywhere" still relevant?
HTTPS Everywhere is a browser extension, a collaboration between The Tor Project and the Electronic Frontier Foundation, that automates rewriting requests for HTTP URLs to the secure HTTPS alternative ...
82
votes
2
answers
46k
views
Why do some websites show the company name next to the URL?
Some websites show the company name next to the URL (in Chrome) and some don't.
How do I set this up for my website? Is there a reason why or why I wouldn't want to do this?
66
votes
4
answers
233k
views
Can you get a reply from a HTTPS site using the Ping command?
I tried using the ping command on a https page, but the message says that ping could not find the host. Is there some issue regarding ping and https?
47
votes
4
answers
15k
views
Firefox "Untrusted Connection" warnings when visiting reputable HTTPS sites when using child's account
When using Firefox on Windows, I see an "Untrusted Connection" warning when visiting any HTTPS site, including very reputable ones such as https://www.google.com and https://search.yahoo.com. The ...
43
votes
6
answers
158k
views
Are there well known HTTP-only sites?
Captive Wi-Fi portals suck.
Often when I open a HTTP site in a browser (desktop Chrome or mobile Chrome), I get the captive portal, but with auto-completion and so quickly I connect again to Wi-Fi.
...
43
votes
3
answers
23k
views
Force Chrome to try HTTPS instead of HTTP when possible?
Many websites offer both, HTTP and HTTPS, e.g., http://stackoverflow.com and https://stackoverflow.com
Is there any way to force Chrome to try HTTPS first before HTTP when I only type stackoverflow....
41
votes
4
answers
20k
views
cURL on Ubuntu 14: all Let's Encrypt certificates are expired (error 60)
Today out of a sudden all HTTPS requests, that my Ubuntu 14 server sends to websites with SSL certificates issued by Let's Encrypt, started to fail. The error produced by cURL is:
curl: (60) SSL ...
40
votes
3
answers
13k
views
How can I get Firefox to prefer HTTPS over HTTP?
For example, I type superuser.com in the browser bar of Firefox, but it automatically goes to the HTTP site. I want the HTTPS site by default.
34
votes
1
answer
51k
views
How to easily create a SSL certificate and configure it in Apache2 in Mac OS X?
I'd like to use my Mac OS X with https for local development tests.
How can I easily make Apache2 respond to ssl, just for test proposes - I don't want a real certificate, just a fake to make local ...
33
votes
5
answers
41k
views
Why does Chrome say "Your connection to this site is not secure" even if the certificate is valid?
My site has a valid certificate, but Chrome marks it as insecure.
I tried my site using Brave and Firefox, and both mark it as secure.
I also ran this online test, and everything looks fine:
https:/...
32
votes
5
answers
72k
views
Nginx as forward proxy for HTTPS
While I was able to successfully configure nginx to proxy HTTP traffic (using this guide), all attempts to proxy HTTPS requests resulted in code 400 (Bad Request).
Nginx debug logs weren't helpful at ...
31
votes
3
answers
2k
views
Can the URL be read by third parties when browsing via HTTPS?
We all know that HTTPS encrypts the connection between the computer and the server so that it cannot be viewed by a third party. However, can the ISP or a third party see the exact link of the page ...
29
votes
3
answers
97k
views
How to add a self-signed certificate as an exception in Chrome?
I have a number of network devices that I access over HTTPS. However, they are self-signed certificates, so Chrome displays a warning page.
In earlier versions of chrome, I seem to remember an "add ...
29
votes
1
answer
9k
views
Why is SSH safer than HTTPS on direct connections to a Git Repository with Credentials
Well, consider that the credentials are stored in a non secure manner somewhere on the file-system (default options on Ubuntu). There are quite a few sites which tell you that using SSH is more secure ...
27
votes
5
answers
44k
views
How much information can my ISP see?
Is it possible for my ISP to see the passwords that I enter on websites and in chat programs? And what about SSL websites that start with https, do they encrypt my username and password before ...
27
votes
1
answer
58k
views
nginx http to https proxy with self-signed certificate
I have an nginx proxy to redirect http requests with a specified port to another https url.
Here is my configuration so far:
server {
listen 59848;
location / {
resolver 8.8.8.8;
...
25
votes
4
answers
66k
views
Is it possible to tunnel https traffic via ssh tunnel with standard ssh-programs?
Can I reroute the https traffic (of an svn repository) via ssh-tunnel.
The problem is that the the services that use https don't work if I just create one tunnel for listening with e.g.:
ssh -L ...
24
votes
4
answers
16k
views
Why are email transfers between mail servers often not encrypted?
Users can often choose if they want to access their email provider (such as Gmail) using a secure channel (e.g. using HTTPS).
However, to the best of my knowledge, when it comes to mail-server-to-...
24
votes
1
answer
104k
views
IE9: Permanently accept untrusted certificate
When accessing a website via HTTPS which has an untrusted certificate, Internet Explorer 9 always shows me the following error message:
Is there a way to import the certificate permanently, so that I ...
23
votes
7
answers
15k
views
Is there an HTTPS Everywhere add on for Chrome, MSIE or safari?
I really like this HTTPS Everywhere add-on for Firefox. But I tend to browser hop, so have similar HTTPS-preferring add-ons been released for the other major browsers?
22
votes
6
answers
59k
views
Chrome persistently redirecting to HTTPS for HTTP site
I'm building a site to replace an older site. The newer site currently is NOT HTTPS. However, the old site is HTTPS. I'm switching between the two sites by toggling an entry in my 'hosts' file.
I ...
22
votes
4
answers
17k
views
Chrome adds weird HTTPS:1 header to all requests
I've been getting a lot of weird errors on websites that relate to HTTPS. These sites works great in FF and IE, but fail to load in Chrome. It appears that though I'm requesting an unsecured URL (http)...
20
votes
2
answers
39k
views
Get a server's SSL/TLS certificate using "openssl s_client"
I am trying to get the SSL/TLS certificate for one of our load balancers (Netscaler) using:
openssl s_client -showcerts -connect lb.example.com:443
But it won't show me the certificate:
CONNECTED(...
20
votes
3
answers
102k
views
What is the modern day equivalent of Firesheep?
Firesheep came out on the scene in 2010 and rocked the world... and never made it to version 1.0. Mozilla has since released 15 major versions of Firefox and is incompatible with the extension. Is ...
18
votes
2
answers
2k
views
Does https encrypt URLs, too?
This is fairly easy.
If I go to https://webserver.com/someurl?a=b, will the someurl?a=b part be protected, or just the contents of the site?
18
votes
3
answers
70k
views
The certificate is not trusted because no issuer chain was provided
Could anyone explain the meaning of this error message in plain English?
Should I add an exception or I should not continue on this website?
Technical details: the URL is here, the browser is ...
18
votes
5
answers
32k
views
Firefox allow HTTP URLs (and not force HTTPS)
tl;dr I want to browse an http-based URL but Firefox will not let me.
A local network HTTP server is at http://host (port 80) and the corresponding HTTPS server is at https://host (port 443).
When I ...
18
votes
1
answer
92k
views
How can I get Chrome accepting self signed certificates?
I have a local REST-API service based on node/express and MongoDB.
I am planning to switch over from http to https.
The Clients are running on Windows Server 2012 R2 (Terminal-Server).
The REST-API is ...