Skip to main content

Questions tagged [https]

HTTPS stands for HTTP Secure and is a combination of HTTP and SSL/TLS (Secure Sockets Layer/Transport Layer Security) and is used to provide an encrypted connection to a website.

Filter by
Sorted by
Tagged with
240 votes
9 answers
929k views

How do I disable the warning Chrome gives if a security certificate is not trusted?

I want to know if it's possible to disable the warning you get in Chrome when you try to go to some HTTPS site that doesn't have a trusted certificate. I have a few sites in my bookmarks that use ...
sippa's user avatar
  • 2,659
136 votes
3 answers
25k views

Why does my browser think that https://1.1.1.1 is secure?

When I visit https://1.1.1.1, any web browser I use considers the URL to be secure. This is what Google Chrome shows: Normally, when I try to visit an HTTPS site via its IP address, I get a security ...
Deltik's user avatar
  • 19.7k
103 votes
7 answers
30k views

Is "HTTPS Everywhere" still relevant?

HTTPS Everywhere is a browser extension, a collaboration between The Tor Project and the Electronic Frontier Foundation, that automates rewriting requests for HTTP URLs to the secure HTTPS alternative ...
fixer1234's user avatar
  • 27.5k
82 votes
2 answers
46k views

Why do some websites show the company name next to the URL?

Some websites show the company name next to the URL (in Chrome) and some don't. How do I set this up for my website? Is there a reason why or why I wouldn't want to do this?
William Entriken's user avatar
66 votes
4 answers
232k views

Can you get a reply from a HTTPS site using the Ping command?

I tried using the ping command on a https page, but the message says that ping could not find the host. Is there some issue regarding ping and https?
Shamim Hafiz - MSFT's user avatar
47 votes
4 answers
15k views

Firefox "Untrusted Connection" warnings when visiting reputable HTTPS sites when using child's account

When using Firefox on Windows, I see an "Untrusted Connection" warning when visiting any HTTPS site, including very reputable ones such as https://www.google.com and https://search.yahoo.com. The ...
200_success's user avatar
  • 1,231
43 votes
3 answers
23k views

Force Chrome to try HTTPS instead of HTTP when possible?

Many websites offer both, HTTP and HTTPS, e.g., http://stackoverflow.com and https://stackoverflow.com Is there any way to force Chrome to try HTTPS first before HTTP when I only type stackoverflow....
kiewic's user avatar
  • 1,060
41 votes
4 answers
20k views

cURL on Ubuntu 14: all Let's Encrypt certificates are expired (error 60)

Today out of a sudden all HTTPS requests, that my Ubuntu 14 server sends to websites with SSL certificates issued by Let's Encrypt, started to fail. The error produced by cURL is: curl: (60) SSL ...
Finesse's user avatar
  • 1,121
41 votes
6 answers
155k views

Are there well known HTTP-only sites?

Captive Wi-Fi portals suck. Often when I open a HTTP site in a browser (desktop Chrome or mobile Chrome), I get the captive portal, but with auto-completion and so quickly I connect again to Wi-Fi. ...
Giacomo Catenazzi's user avatar
40 votes
3 answers
13k views

How can I get Firefox to prefer HTTPS over HTTP?

For example, I type superuser.com in the browser bar of Firefox, but it automatically goes to the HTTP site. I want the HTTPS site by default.
Ian Kelling's user avatar
34 votes
1 answer
50k views

How to easily create a SSL certificate and configure it in Apache2 in Mac OS X?

I'd like to use my Mac OS X with https for local development tests. How can I easily make Apache2 respond to ssl, just for test proposes - I don't want a real certificate, just a fake to make local ...
Daniel Cukier's user avatar
33 votes
5 answers
41k views

Why does Chrome say "Your connection to this site is not secure" even if the certificate is valid?

My site has a valid certificate, but Chrome marks it as insecure. I tried my site using Brave and Firefox, and both mark it as secure. I also ran this online test, and everything looks fine: https:/...
Jean-François Beauchamp's user avatar
32 votes
5 answers
72k views

Nginx as forward proxy for HTTPS

While I was able to successfully configure nginx to proxy HTTP traffic (using this guide), all attempts to proxy HTTPS requests resulted in code 400 (Bad Request). Nginx debug logs weren't helpful at ...
user avatar
31 votes
3 answers
2k views

Can the URL be read by third parties when browsing via HTTPS?

We all know that HTTPS encrypts the connection between the computer and the server so that it cannot be viewed by a third party. However, can the ISP or a third party see the exact link of the page ...
Anonymous's user avatar
  • 319
29 votes
3 answers
97k views

How to add a self-signed certificate as an exception in Chrome?

I have a number of network devices that I access over HTTPS. However, they are self-signed certificates, so Chrome displays a warning page. In earlier versions of chrome, I seem to remember an "add ...
Force Flow's user avatar
  • 4,116
29 votes
1 answer
9k views

Why is SSH safer than HTTPS on direct connections to a Git Repository with Credentials

Well, consider that the credentials are stored in a non secure manner somewhere on the file-system (default options on Ubuntu). There are quite a few sites which tell you that using SSH is more secure ...
paul23's user avatar
  • 583
27 votes
5 answers
44k views

How much information can my ISP see?

Is it possible for my ISP to see the passwords that I enter on websites and in chat programs? And what about SSL websites that start with https, do they encrypt my username and password before ...
Gohary's user avatar
  • 373
27 votes
1 answer
57k views

nginx http to https proxy with self-signed certificate

I have an nginx proxy to redirect http requests with a specified port to another https url. Here is my configuration so far: server { listen 59848; location / { resolver 8.8.8.8; ...
Jakob's user avatar
  • 381
25 votes
4 answers
66k views

Is it possible to tunnel https traffic via ssh tunnel with standard ssh-programs?

Can I reroute the https traffic (of an svn repository) via ssh-tunnel. The problem is that the the services that use https don't work if I just create one tunnel for listening with e.g.: ssh -L ...
Juha's user avatar
  • 601
24 votes
4 answers
16k views

Why are email transfers between mail servers often not encrypted?

Users can often choose if they want to access their email provider (such as Gmail) using a secure channel (e.g. using HTTPS). However, to the best of my knowledge, when it comes to mail-server-to-...
Amelio Vazquez-Reina's user avatar
24 votes
1 answer
104k views

IE9: Permanently accept untrusted certificate

When accessing a website via HTTPS which has an untrusted certificate, Internet Explorer 9 always shows me the following error message: Is there a way to import the certificate permanently, so that I ...
Bob's user avatar
  • 717
23 votes
7 answers
15k views

Is there an HTTPS Everywhere add on for Chrome, MSIE or safari?

I really like this HTTPS Everywhere add-on for Firefox. But I tend to browser hop, so have similar HTTPS-preferring add-ons been released for the other major browsers?
MatthewMartin's user avatar
22 votes
6 answers
58k views

Chrome persistently redirecting to HTTPS for HTTP site

I'm building a site to replace an older site. The newer site currently is NOT HTTPS. However, the old site is HTTPS. I'm switching between the two sites by toggling an entry in my 'hosts' file. I ...
Codesmith's user avatar
  • 752
22 votes
4 answers
17k views

Chrome adds weird HTTPS:1 header to all requests

I've been getting a lot of weird errors on websites that relate to HTTPS. These sites works great in FF and IE, but fail to load in Chrome. It appears that though I'm requesting an unsecured URL (http)...
TwoDiv's user avatar
  • 371
20 votes
2 answers
39k views

Get a server's SSL/TLS certificate using "openssl s_client"

I am trying to get the SSL/TLS certificate for one of our load balancers (Netscaler) using: openssl s_client -showcerts -connect lb.example.com:443 But it won't show me the certificate: CONNECTED(...
Daniel Serodio's user avatar
20 votes
3 answers
102k views

What is the modern day equivalent of Firesheep?

Firesheep came out on the scene in 2010 and rocked the world... and never made it to version 1.0. Mozilla has since released 15 major versions of Firefox and is incompatible with the extension. Is ...
William Entriken's user avatar
18 votes
2 answers
2k views

Does https encrypt URLs, too?

This is fairly easy. If I go to https://webserver.com/someurl?a=b, will the someurl?a=b part be protected, or just the contents of the site?
Karel Bílek's user avatar
  • 1,512
18 votes
3 answers
70k views

The certificate is not trusted because no issuer chain was provided

Could anyone explain the meaning of this error message in plain English? Should I add an exception or I should not continue on this website? Technical details: the URL is here, the browser is ...
Ali's user avatar
  • 325
18 votes
1 answer
91k views

How can I get Chrome accepting self signed certificates?

I have a local REST-API service based on node/express and MongoDB. I am planning to switch over from http to https. The Clients are running on Windows Server 2012 R2 (Terminal-Server). The REST-API is ...
oldmayn's user avatar
  • 191
17 votes
4 answers
57k views

Force Chrome to Ignore a "weak ephemeral Diffie-Hellman public key”

With the update of Chrome to v45, it's blocking access to pages with weak ephermeral Diffie-Hellman public keys. I understand that this is due to Logjam. I understand that switching from https to http ...
Raine Dragon's user avatar
17 votes
2 answers
4k views

Slow HTTPS requests to all websites in Chrome

We have some weird behavior on a lot of machines here – computers running Windows 10 x64 and Windows 8.1 x64. Using Internet Explorer we face no problems when visiting different websites, but Chrome ...
Daniel Jørgensen's user avatar
16 votes
7 answers
24k views

Log HTTP and HTTPS browser traffic, decrypting the latter

Is there a way that I can save all HTTP and HTTPS browser communications (including request, response, full headers and body) to files on my computer? The HTTPS communications must be saved decrypted....
pts's user avatar
  • 7,380
16 votes
5 answers
30k views

Firefox allow HTTP URLs (and not force HTTPS)

tl;dr I want to browse an http-based URL but Firefox will not let me. A local network HTTP server is at http://host (port 80) and the corresponding HTTPS server is at https://host (port 443). When I ...
JamesThomasMoon's user avatar
16 votes
3 answers
66k views

Windows hosts: how can I redirect HTTPS site?

I have the following in my C:\Windows\System32\drivers\etc\hosts: 127.0.0.1 example.com It works when I use: http://example.com But does not work when I use: https://example.com, which gives error ...
yarek's user avatar
  • 631
15 votes
8 answers
201k views

Continually getting https certificate errors on all browsers

I recently switched to a new laptop running Windows 7. For some reason I am constantly getting certificate errors when hitting sites where I really shouldn't be getting them - twitter, picasa, google ...
Jaco Pretorius's user avatar
15 votes
1 answer
31k views

How do I view Current User Certificates, and not Local Machine Certificates, on Windows?

When installing a certificate on Windows, you are given two choices: If I click Next, I can choose to allow the Certificate Import Wizard to figure out where to put it for me, but does this mean it ...
NobleUplift's user avatar
  • 1,605
14 votes
5 answers
16k views

How to recursively upload a directory to a WebDAV server through HTTPS from the command line?

I'm facing a rather simple situation, I have to upload, as-is, a big tree of files to a WebDAV server that's reachable over HTTPS. I must start the upload from a linux box with command line only. I ...
eskatos's user avatar
  • 241
13 votes
3 answers
15k views

How can I disable SSL (https) google search in FireFox?

I know that Firefox 14 has enabled Secure Sockets Layer (SSL or https) search for its Google search plug-in. How can I disable it? Thanks,
user avatar
13 votes
9 answers
21k views

Mac OS X Lion 10.7.2 update breaks SSL

Summary After updating from 10.7.1 to 10.7.2, neither Safari nor Google Chrome can load GMail. Spinning Beachballs all around. The problem isn't GMail; Firefox loads GMail just fine. The problem ...
mcandre's user avatar
  • 3,048
12 votes
3 answers
41k views

How can I force Google Chrome to remember HTTPS credentials?

Google Chrome is a great browser for sure, though I still see bugs there. Some of them are really annoying: my Chrome (at my work computer) does not offer to remember HTTPS authentication data, and I ...
Lyubomyr Shaydariv's user avatar
12 votes
1 answer
13k views

What makes the address bar in IE turn green?

What aspect of a site's SSL certificate causes IE's address bar to turn green? I'm working on a site which already uses SSL successfully, but am interested to know if there are different levels of ...
Matthew Dresser's user avatar
12 votes
2 answers
12k views

How do I access Gmail in lynx?

Client does not support https. That is all I am getting. I even tried the basic HTML link.
yayu's user avatar
  • 223
11 votes
2 answers
7k views

How do I show www. and https:// in Chrome 79? [duplicate]

I just updated Chrome to version 79, and I noticed that prefixes like https:// and www. have disappeared again. Before, I fixed this by setting the omnibox-ui-hide-steady-state-url-scheme-and-...
Joseph Sible-Reinstate Monica's user avatar
11 votes
2 answers
54k views

Where does Firefox store cerificates and how to delete one?

The root cause of my problem is not known to me, whatever it is, I experience frequent DNS failures. When it happens I cannot browse to my Gmail inbox. I use two DNS settings. One is the public DNS ...
user avatar
10 votes
4 answers
10k views

Force a browser to load the 'https' edition of a website, not the 'http'?

This is similar to this previous question, but I believe it's a bit different*. Sites like GMail support a preference that pushes all traffic through the SSL edition of the site rather than the plain-...
warren's user avatar
  • 10.2k
10 votes
5 answers
12k views

Looking for a tool (possibly on Linux) that will allow me to make a manual HTTP or HTTPS request

I am looking for a tool (possibly on Linux) that will allow me to make a manual HTTP or HTTPS request. By manual, I really mean it: I should be able to feed it a text file which looks like POST /foo ...
Andrea's user avatar
  • 1,525
10 votes
6 answers
66k views

How to connect to an HTTPS WebDAV Folder on Windows 7?

I'm trying to connect to an HTTPS WebDAV folder on Windows 7. I go to a "Computer" Explorer window, right click, and click "Add a Network Location." I follow the prompts and get "The folder you ...
A Student at a University's user avatar
10 votes
2 answers
23k views

What is the purpose of chain.pem files?

A general question about chaim.pem files; I used a csr obtained from my host, and used the Certbot from LetsEncrypt to generate a https cert; I used the following command $ certbot certonly --manual -...
joedotnot's user avatar
  • 461
10 votes
1 answer
10k views

In Wireshark where can I find the TLS Server's Certificate

I'm looking at a TLS v1.3 headers in Wireshark and I'm not sure where I would find the server certificate that is used to confirm that the server is who they claim to be. The Client Sends Hello then ...
masonCherry's user avatar
10 votes
3 answers
4k views

Redirect ALL web traffic through TLS without a VPN

Assumptions: Server: I have a Debian Squeeze server, routable on the public Internet, with a static IPv4 address. I have unrestricted access to modify the software on the server. The server can ...
allquixotic's user avatar
  • 34.7k

1
2 3 4 5
18