Chrome 62 will mark all HTTP pages with data entry fields as "Not Secure"

Discussion in 'privacy technology' started by Minimalist, Apr 27, 2017.

  1. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    9,382
    Location:
    Slovenia
  2. ExtremeGamerBR

    ExtremeGamerBR Registered Member

    Joined:
    Aug 3, 2010
    Posts:
    1,323
    In Chrome/Chromium 57.x: chrome://flags/#mark-non-secure-as
     
  3. shadek

    shadek Registered Member

    Joined:
    Feb 26, 2008
    Posts:
    2,533
    Location:
    Sweden
    Thanks. Did not know of this.
     
  4. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    6,549
    Additionally this flag is available for Chrome 57.x:
    chrome://flags/#enable-http-form-warning

    Now an in-form warning is displayed directly below the fields while entering data.
     
  5. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    9,382
    Location:
    Slovenia
    Yes, I've noticed this new flag also. Though don't have a site to test it :)
    I've enabled them both, so http is more visible.
     
  6. ExtremeGamerBR

    ExtremeGamerBR Registered Member

    Joined:
    Aug 3, 2010
    Posts:
    1,323
  7. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    9,382
    Location:
    Slovenia
  8. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    6,549
    Try this:
    http://voidtools.com/forum/ucp.php?mode=login
    Type something in into these fields and the in-form warning should appear
     
  9. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    9,382
    Location:
    Slovenia
    Thanks @mood
    Works great.

    upload_2017-4-28_10-39-39.png
     
  10. clubhouse1

    clubhouse1 Registered Member

    Joined:
    Sep 26, 2013
    Posts:
    1,108
    Location:
    UK
  11. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    9,382
    Location:
    Slovenia
    As the Web moves toward HTTPS by default, Chrome will remove “secure” indicator
    https://arstechnica.com/gadgets/201...-default-chrome-will-remove-secure-indicator/
     
  12. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    9,382
    Location:
    Slovenia
    Google Chrome update to label HTTP-only sites insecure within WEEKS
    https://www.theregister.co.uk/2018/07/03/google_chrome_http/
     
  13. TairikuOkami

    TairikuOkami Registered Member

    Joined:
    Oct 10, 2005
    Posts:
    3,030
    Location:
    Slovakia
    He could just say, many sites need to buy certificates from us, so we can make much more money. :shifty:
     
  14. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    9,382
    Location:
    Slovenia
    Most will probably choose free certificates. Why spending money on something you can get for free?
     
  15. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    7,889
  16. Palancar

    Palancar Registered Member

    Joined:
    Oct 26, 2011
    Posts:
    2,045
    I always prefer private "self created" certificates where the OWNER publishes the sha256/512 fingerprint on their website stating that any other fingerprint means you have been MITM'd or worse. Then I set software which automatically confirms the cert before I even log in. Used to be like that here, but its changed now.
     
  17. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    6,549
    Despite Chrome’s pending “mark of shame,” 3 major news sites aren’t HTTPS
    Newsweek, Time, and Fox remain vulnerable to injection, man-in-middle attacks.
    July 6, 2018

    https://arstechnica.com/information...mark-of-shame-3-major-news-sites-arent-https/
     
Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.