Firefox 23 and mixed content

The Firefox 23 release notes claim that mixed content pages are now blocked. The Mozilla Messaging Forum for Thunderbird support has mixed content, but it is not blocked. Why say that sites with mixed content are blocked if they are not? The URL:
http://getsatisfaction.com/mozilla_messaging/topics

Firefox has two prefs to control mixed content.
*security.mixed_content.block_active_content
*security.mixed_content.block_display_content
Only block_active_content is currently set to true by default. block_display_content is still false, so thing like images aren't blocked.
*Web Console (Firefox/Tools > Web Developer;Ctrl+Shift+K)
*https://developer.mozilla.org/en/Security/MixedContent
*http://kb.mozillazine.org/about:config
<pre><nowiki>Blocked loading mixed display content "http://www.mozilla.org/thunderbird/img/tb5/page-background.png" @ https://getsatisfaction.com/mozilla_messaging/topics
Blocked loading mixed display content "http://www.mozilla.org/thunderbird/img/tb5/title.png" @ https://getsatisfaction.com/mozilla_messaging/topics
Blocked loading mixed display content "http://mozilla.org/img/covehead/template/title.png" @ https://getsatisfaction.com/mozilla_messaging/topics</nowiki></pre>

Similar Messages

  • Problem with Left Click (mighty mouse) and flash content

    Hi, first sorry for my bad english...
    Well I have an issue with the left click (i have mighty mouse) and flash content in Firefox:
    if i'm using Firefox and then change to any other app, when i get back to firefox i have no left click anymore...
    So i have to open the mouse setting panel and everything works fine again...
    I don't want to open the mouse panel over and over again to fix that, so what i can do?
    THANKS in advance =)
    I uploaded a video to show the issue:
    http://www.youtube.com/watch?v=ROWSod5fUjk
    Mighty mouse Settings:
    Left Click + Right Click
    Firefox ver: 3.5.5
    Snow Leopard: 10.6.2
    iMac 24" (iMac9,1)
    Message was edited by: MaLk Gopher

    Hi, Guys!!
    And you have some right cosmic_hippo , Why?
    Well think that the real problem it's something between Firefox and Flash content...
    because if i use Safari and i try make what i describe in the first post, i don't have any problem with the mouse settings.
    Only Happens when i use Firefox...
    Cheers.
    Well the issue is still there...

  • When webpages contain mixed content, does (or can) Firefox block content from unsecure sources?

    When secure webpages (those using SSL) contain content from non-SSL sources, Internet Explorer 8 and 9 ask if you want to view only the content that was delivered securely. I haven't been able to find a similar prompt in Firefox. I know of three possible explanations:
    1. Firefox does not offer protection against mixed content. I hope this isn't the case!
    2. Firefox has a setting I haven't found.
    3. Firefox may offer the protection but in a different manner than Internet Explorer.

    Firefox doesn't and can't block content coming via an insecure connection in that case, but you can get a warning.
    The settings for the warning messages have been removed from the user interface (Bug 513166).<br />
    You need to change the related security.warn_* prefs directly on the <b>about:config</b> page.<br />
    Filter: security.warn_viewing_mixed

  • Https site with no mixed content and EV cert is shown as mixed and not identifiying itself

    My site https:orderform page contains only https images and website has an EV cert that is valid and current. With history cleared and visiting page for first time Firefox reports that page contains mixed content and that site does not identify iteself.
    Hitting F5 to refresh the page address bar correctly shows green with no mixed content popup and that side idenfies itself.
    SSLCertificateChainFile has been added and this makes no difference.
    Problem does not occur in other browsers (IE, Safari, Chrome).
    A new FF profile has been tried but same problem occurs.
    Why would refeshing the page work?
    Problem affects all firefox browsers 3.5 to 14.01. I dont know about those <3.5.
    I have read and tried most suggestions in forum and elsewhere but cant find a solution.
    I have not provided the url as this is my order page and its important for me to see genuine visitors.

    First a reply to Jsher2000
    Thank you for your suggestions. Yes and Yes did this ages ago but no non-https content.
    I have found a workaround for what appears to be a bug in Firefox:-(
    Here is the non-perfect workaround. First Detect firefox
    xUA=navigator.userAgent.toLowerCase()
    xFf=xUA.indexOf('firefox')!=-1
    if(xFf) top.location.href='https://ord.html'
    else top.location.replace( 'https://ord.html' )
    The current non-secure page is being replaced with a secure one.
    Internet Quote:
    "The difference between location.href and location.replace is that the former creates a new history entry on the visitor's browser meaning that if they hit the back button, they can get in a 'redirection loop' which is usually undesirable and may have unwanted side effects."
    It appears that FF is using some content (cached) from the previous non-secure page when replacing - leading to the mixed content and non-identified site. An F5 refresh or reload of current page will show that site identifies iteself and there is no mixed content.
    In summary its a Firefox Bug.

  • Firefox Security Certificate reports mixed content on secure page: Production & Nightly

    Hi Firefox,
    I’ve been doing some searching but have been unable to find this issue being discussed in a similar case.
    We (the University of Toronto) are running Microsoft’s Office365 service to provide email to our students. The security issue presents itself after several seconds after the OWA page loads and occurs regardless of user activity on the page.
    Initially, as the page loads, the browser indicates that the site is secure. Shortly thereafter the browser indicates that there are insecure elements on the page. However, from our diagnostics (Firefox developer tools, Firebug, Wireshark) we cannot identify any non-encrypted traffic. We have contacted Microsoft support and they have assured us that our connections to their servers are secure.
    The issue presents shortly after loading the inbox view of OWA. Initially the page is shown as being secure:
    [Figure1: page secure notice] [Figure2: Security details when secure]
    However shortly after the page loads, with no user action, the indicator will change to show the page has security issues.
    [Figure 3: Mixed content warning] [Figure 4: Security Details]
    The indication is that there is a problem with mixed content. The certificate is unchanged.
    [Figure 5: Certificate Details]
    The problem has been reproduced as of May 6, 2014 on a fully patched version of Windows 8.1 running a clean install of nightly; on a fully patched Windows 7 running a clean install of production Firefox 29.0; and on OSX 10.9.2 on a factory reset re-install of production 29.0.
    I’m wondering if anyone can shed any light on this behavior and advise a path to incorporate corrective action into subsequent releases of Firefox?
    Thanks in advance,
    Luke

    Plenty of things show, however the page is still shown as secure after all activity stops in the console the page is still secure.
    These are the last for console events:
    POST https://pod51030.outlook.com/owa/service.svc [HTTP/1.1 200 OK 160ms]
    POST https://pod51030.outlook.com/owa/service.svc [HTTP/1.1 200 OK 200ms]
    POST https://pod51030.outlook.com/owa/service.svc [HTTP/1.1 200 OK 160ms]
    POST https://pod51030.outlook.com/owa/service.svc [HTTP/1.1 200 OK 1072ms]
    a few seconds later is when the warning indicator appears. There is no console event around this time.

  • Mixing static and dynamic content in a single outputText value causes NPEs

    Hi,
    I am having a problem and I'm wondering if it is a result of my error or if this is a bug.
    I am mixing dynamic and static content in the value attribute of tags (e.g., outputText). On initial page load, everything works fine. However, if the same view is reloaded (e.g., after a failed validation) I get an NPE from JSF:
    [#|2006-10-24T08:49:03.756-0500|SEVERE|sun-appserver-pe8.2|javax.enterprise.system.container.web|_ThreadID=12;|StandardWrapperValve[Faces Servlet]: Servlet.service() for servlet Faces Servlet threw exception
    java.lang.NullPointerException
            at com.sun.faces.el.MixedELValueParser.getNextToken(MixedELValueParser.java:140)
            at com.sun.faces.el.MixedELValueParser.parse(MixedELValueParser.java:123)
            at com.sun.faces.el.MixedELValueBinding.getValue(MixedELValueBinding.java:60)
            at javax.faces.component.UIOutput.getValue(UIOutput.java:147)
            at com.sun.faces.renderkit.html_basic.HtmlBasicInputRenderer.getValue(HtmlBasicInputRenderer.java:82)
            at com.sun.faces.renderkit.html_basic.HtmlBasicRenderer.getCurrentValue(HtmlBasicRenderer.java:201)
            at com.sun.faces.renderkit.html_basic.LabelRenderer.encodeBegin(LabelRenderer.java:128)
            at javax.faces.component.UIComponentBase.encodeBegin(UIComponentBase.java:683)
            at com.sun.faces.renderkit.html_basic.HtmlBasicRenderer.encodeRecursive(HtmlBasicRenderer.java:443)
            at com.sun.faces.renderkit.html_basic.GridRenderer.encodeChildren(GridRenderer.java:233)
            at javax.faces.component.UIComponentBase.encodeChildren(UIComponentBase.java:701)
            at com.sun.faces.renderkit.html_basic.HtmlBasicRenderer.encodeRecursive(HtmlBasicRenderer.java:445)
            at com.sun.faces.renderkit.html_basic.GroupRenderer.encodeChildren(GroupRenderer.java:130)
            at javax.faces.component.UIComponentBase.encodeChildren(UIComponentBase.java:701)
            at com.sun.faces.renderkit.html_basic.HtmlBasicRenderer.encodeRecursive(HtmlBasicRenderer.java:445)
            at com.sun.faces.renderkit.html_basic.GridRenderer.encodeChildren(GridRenderer.java:233)
            at javax.faces.component.UIComponentBase.encodeChildren(UIComponentBase.java:701)
            at com.sun.faces.renderkit.html_basic.HtmlBasicRenderer.encodeRecursive(HtmlBasicRenderer.java:445)
            at com.sun.faces.renderkit.html_basic.GroupRenderer.encodeChildren(GroupRenderer.java:130)
            at javax.faces.component.UIComponentBase.encodeChildren(UIComponentBase.java:701)
            at com.sun.faces.renderkit.html_basic.HtmlBasicRenderer.encodeRecursive(HtmlBasicRenderer.java:445)
            at com.sun.faces.renderkit.html_basic.GridRenderer.encodeChildren(GridRenderer.java:233)
            at javax.faces.component.UIComponentBase.encodeChildren(UIComponentBase.java:701)
            at javax.faces.webapp.UIComponentTag.encodeChildren(UIComponentTag.java:609)
            at javax.faces.webapp.UIComponentTag.doEndTag(UIComponentTag.java:546)
            at com.sun.faces.taglib.html_basic.PanelGridTag.doEndTag(PanelGridTag.java:460)
            at org.apache.jsp.registration_jsp._jspx_meth_h_panelGrid_0(registration_jsp.java:324)
            at org.apache.jsp.registration_jsp._jspx_meth_h_form_0(registration_jsp.java:223)
            at org.apache.jsp.registration_jsp._jspx_meth_f_view_0(registration_jsp.java:157)
            at org.apache.jsp.registration_jsp._jspService(registration_jsp.java:118)
            at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:105)
            at javax.servlet.http.HttpServlet.service(HttpServlet.java:860)
            at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:336)
            at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:297)
            at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:247)
            at javax.servlet.http.HttpServlet.service(HttpServlet.java:860)
            at sun.reflect.GeneratedMethodAccessor188.invoke(Unknown Source)
            at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
            at java.lang.reflect.Method.invoke(Method.java:585)
            at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:249)
            at java.security.AccessController.doPrivileged(Native Method)
            at javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
            at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:282)
            at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:165)
            at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:257)
            at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:55)
            at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:161)
            at java.security.AccessController.doPrivileged(Native Method)
            at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:157)
            at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:723)
            at org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:482)
            at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:417)
            at org.apache.catalina.core.ApplicationDispatcher.access$000(ApplicationDispatcher.java:80)
            at org.apache.catalina.core.ApplicationDispatcher$PrivilegedForward.run(ApplicationDispatcher.java:95)
            at java.security.AccessController.doPrivileged(Native Method)
            at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:313)
            at com.sun.faces.context.ExternalContextImpl.dispatch(ExternalContextImpl.java:326)
            at com.sun.faces.application.ViewHandlerImpl.renderView(ViewHandlerImpl.java:132)
            at com.sun.faces.lifecycle.RenderResponsePhase.execute(RenderResponsePhase.java:87)
            at com.sun.faces.lifecycle.LifecycleImpl.phase(LifecycleImpl.java:248)
            at com.sun.faces.lifecycle.LifecycleImpl.render(LifecycleImpl.java:117)
            at javax.faces.webapp.FacesServlet.service(FacesServlet.java:194)
            at sun.reflect.GeneratedMethodAccessor202.invoke(Unknown Source)
            at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
            at java.lang.reflect.Method.invoke(Method.java:585)
            at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:249)
            at java.security.AccessController.doPrivileged(Native Method)
            at javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
            at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:282)
            at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:165)
            at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:257)
            at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:55)
            at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:161)
            at java.security.AccessController.doPrivileged(Native Method)
            at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:157)
            at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:263)
            at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:551)
            at org.apache.catalina.core.StandardContextValve.invokeInternal(StandardContextValve.java:225)
            at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:173)
            at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:551)
            at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:170)
            at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:551)
            at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:132)
            at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:551)
            at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:933)
            at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:189)
            at com.sun.enterprise.web.connector.grizzly.ProcessorTask.doProcess(ProcessorTask.java:604)
            at com.sun.enterprise.web.connector.grizzly.ProcessorTask.process(ProcessorTask.java:475)
            at com.sun.enterprise.web.connector.grizzly.ReadTask.executeProcessorTask(ReadTask.java:371)
            at com.sun.enterprise.web.connector.grizzly.ReadTask.doTask(ReadTask.java:264)
            at com.sun.enterprise.web.connector.grizzly.TaskBase.run(TaskBase.java:281)
            at com.sun.enterprise.web.connector.grizzly.WorkerThread.run(WorkerThread.java:83)My code looks like this:
    <h:outputText escape="false"
              value='<link href="#{myBean.styleSheet}" rel="stylesheet" type="text/css"  />' />If I replace this with a much more convoluted set of tags, it works:
    <h:outputText escape="false"
              value='<link href="' /><h:outputText escape="false" value="#{myBean.styleSheet}"
              /><h:outputText escape="false" value='" rel="stylesheet" type="text/css" />' />So is the problem that I am mixing dynamic and static content with a single value? If so, why does it work on the first view, and not after?
    If it matters, I'm using the reference implementation version 1.1 (as included with NetBeans 5.5RC2) on SuSE 10.0 w/ JDK 1.5_09.
    Thanks,
    Bill

    Yes, that's how I originally had it, but then changed it to the outputText approach since a single tag could do what I wanted, as long as I was allowed to mix static and dynamic content within a single value.
    I think this is a bug in JSF 1.1, since if what I am doing is illegal, it should throw an exception on the first page view, not work on first view and throw an exception on subsequent views. I'm guessing that this has something to do with the fact that on first page view it only runs the restore view and render response JSF phases, while on subsequent requests all of the phases will be run, and it's in one of those other phases that the exception is thrown.
    For now, multiple tags is the work-around, I guess.
    Thanks,
    Bill

  • Firefox 11 beta is having issues loading Flash and HTML content, shows plain text instead of images

    I'm not sure what is causing the problem but it has been happening since beta 10 and now its also in beta 11. Randomly when I load any web page the page is displayed in plain text leaving all the HTML or flash content blank. Yes I have the most recent version of flash installed along with Java just in case it was looking for that mess as well. Sometimes the pages load fine, and sometimes they don't, it's like playing lotto with the internet. The only fix I know of is to either keep refreshing the page and "hope" it catches it on the reload, or closing Firefox and running CCleaner. Some times FF will load some of the visual data and leave gaps but usually its just basic text mode. I'm at a loss as to whether the problem is from Firefox or my ISP being a douche, either way its annoying that Firefox is not showing internet pages like it used to.
    Hate to see it happening but it looks like Firefox is on its way to being just another Internet Explorer clone (failure). Should have stayed with your original team, all the new folks you have hired are really mucking up the whole project and its goal of a free and open internet. Not to mention writing bad code and costing you money and more importantly the user base.
    (Update, now it's not doing it go figure, but I'm sure it will do it again at some point, perhaps its not Firefox and something else, I'll keep my eye on it and try to report any findings)

    If you use extensions (Tools > Add-ons > Extension) like <i>Adblock Plus</i> or <i>NoScript</i> or <i>Flash Block</i> that can block content then make sure that such extensions aren't blocking content.
    Start Firefox in <u>[[Safe Mode]]</u> to check if one of the extensions or if hardware acceleration is causing the problem (switch to the DEFAULT theme: Firefox (Tools) > Add-ons > Appearance/Themes).
    *Don't make any changes on the Safe mode start window.
    *https://support.mozilla.org/kb/Safe+Mode
    *https://support.mozilla.org/kb/Troubleshooting+extensions+and+themes

  • How come I can't copy content in Firefox and paste it into Word and it keep it's formatting?

    When I copy content off a web page in Firefox and paste it in Microsoft Word, I lose the original formatting. It works fine in IE but I'm wanting to eliminate IE but I can't at this time because of this problem....

    That is a problem with the clipboard. Firefox now places more formats on the clipboard and some software selects the wrong format.
    See:
    *[[/questions/926113]]
    *[[/questions/926093]]

  • Mixed content - https and http

    Guys and Gals -
    I have a page that has mixed content - http and https. Users talk to my webserver
    using https, which talks to the portal server using http.
    The browser popups a warning saying that the site has mixed content. Is there
    any way to prevent this warning from coming up? Anything I can do using a proxy
    or something else?
    Thanks
    Niks

    Neeraj Harlalka wrote:
    It's probably not because your webserver is talking to App server on
    http connection. It could be some images being referrenced from the
    browser using non-secured protocol. Try using absolute path or code URLs
    using jsp tags.
    hope it helps
    Guys and Gals -
    I have a page that has mixed content - http and https. Users talk to my webserver
    using https, which talks to the portal server using http.
    The browser popups a warning saying that the site has mixed content. Is there
    any way to prevent this warning from coming up? Anything I can do using a proxy
    or something else?
    Thanks
    Niks

  • Keep getting a pop up at the top of many websites I visit 'firefox security error content at *web address* may not load" I am using the most recent firefox and windows 7.

    Keep getting a pop up at the top of many websites I visit 'firefox security error content at *web address* may not load" I am using the most recent firefox and windows 7. This is happening at many sites, such as hotmail, google reader, and many others.

    Sorry, I don't think that is a message from inside Firefox, the wording doesn't sound correct - at least the beginning of that message. My "gut" thinks that is a MSN Live message to explain and compensate for their lack of security with a re-direct from a secure domain to an un-secure domain. ''(the end of that message)''
    {Ctrl + Shft + J} will open the Firefox Error Console - I'm curious what Firefox has to say about that situation. If you find the error message for that domain, you can right-click the message to '''copy''' it and then paste that error message here.
    Maybe '''TonyE''' or '''cor-el''' will be more familiar with the situation at Live and maybe at Google Reader, I don't use either of those services and have never seen a message like that myself.

  • Difference between Firefox and Safari when viewing iWeb created content.

    Greeting Mac fans,
    I've noticed that my iWeb pages load 2-3 times faster when viewed in Firefox than Safari. I find this a little suprising.
    Also, my hit counter shows when the page is displayed in Firefox, but not in Safari.
    Any ideas?
    All content was created using iWeb and is hosted at my dotmac account. I have a domain name and I'm also using "masked URL fowarding"
    Peace
    super_tee
    Emac 1.25ghz   Mac OS X (10.4.8)   Packed to the eyeballs with goodies....

    There are two things that I think are at play
    here...
    First, the difference in loading times between
    FireFox and Safari.... I haven't noticed that huge of
    a difference myself, but what I have noticed is that
    FireFox is much faster at pulling up cached
    material....or maybe figuring out whether to pull
    from cache vs. anew. I've noticed that FireFox also
    hangs on to cached material more tenaciously than
    Safari, meaning that sometimes I have to go in and
    empty FireFox's cache in order to see something
    update...I have to do this much more often in FireFox
    than Safari.
    Second, about your counters. If you turn your
    masking off from your domain forwarding, you .Mac
    counters will be visible to all. Using masking will
    make them invisible to certain browsers under certain
    conditions.
    James, I guess I should download and use Firefox, but remember feeling burned the last time I did. I downloaded it, and soon after, things went awry with my computer. I am hoping that the were unrelated events, since Leo Laporte, the KFI techie guru, also recommends using Firefox for various reasons. He says that it is very safe because, basically, it is "dumb" (his words). But he meant that it's lack of bells and whistles made it go very fast, and made it avoid all the problems of Internet Explorer.
    Lorna in Southern California

  • When I scroll over content there seems to be "pop-ups" that come about. Why is this happening with FireFox and not I. E. ? How do I fix the problem?

    I'm using Firefox as my browser, the web content has content that is double underlined and when I scroll over it it pops an image up or some other sign up stuff. How do I prevent this from happening?

    Most likely caused by one of your extensions. If the above doesn't get rid of it, check here next:
    orange Firefox button (or Tools menu) > Add-ons > Extensions category
    Bear in mind that's it's probably not clearly labeled "annoying advertising" but may have an unrelated or innocent-sounding name. Disable everything that you do not use daily; if in doubt disable. Then use one of the links that appears above a disabled extension to restart Firefox and see whether that helps.

  • Can firefox stop constant buffering of all video and film content?

    Hi, I have spent most hours of all my days since having an apple mac (2-3 weeks) to try and fathom why it does some things that my previous cheaper laptops didn't even do and to solve them. The most persistently annoying thing is when I try to watch a movie on line or youtube it buffers every 2-3 seconds, making it impossible to watch. I have tried so many things and the problem persists whatever. Firefox was the last thing I downloaded to try and stop this and this doesn't even work in doing so. I am at my wits end and worn out. I can't understand why there is never ever an answer to all the questions posted in blogs, particularly apple, good if you just want to see the problems people have and no solution. Loads of people have had this problem, but I can't find even one answer to this problem that works. I don't know how to use quick time and whether that can assist

    There are lots of reasons you could be having this problem. To try to narrow it down, I'd start with a known good site like youtube and try playing the same video in both Firefox and Safari. If the problem happens both in Firefox and Safari, I'd say there is a problem with your network connection. In that case, you might try resetting your connection (powering off your cable modem and then starting it again).
    If the problem only happens in Firefox, try the solutions in [[Video or audio does not play]] (especially the ones farther down the page).

  • Looking for a HTTPS/HTTP mixed content "sniffer" tool

    I am hoping someone here can help me out. I am looking for a tool/addon that can point out exact what on the page is triggering a mixed content error. The browser will tell me that something on the page is not secure, but it won't tell me where or what the non secure item is so I can fix it.
    Here is my recent example of this problem.
    I had a issue with a HTTPS page with a doubleclick tracking pixel on it. It was a standard tracking pixel iframed on to the page and the page iframed was HTTPS with no cert problems. It turned out that the page being iframed has a javascript call that was HTTP and this was triggering the mixed content error.
    Unfortunately it took me almost two days to figure out the page being iframed was making the non-ssl call, not anything on the site.
    If anyone here could help me find a tool or point to a browser feature that I don't know about that could help me sniff out these mixed content error faster you would make my life so much easier.

    You can glean a little more information from Firefox's Browser Console (Ctrl+Shift+j). Mixed content blocks generate a log entry in the security category. If you enter mix in the filter box in the upper right of the console, that should help drill down on the message. (Screen shot example attached.)
    Now... you still need to figure out what is generating the request, but hopefully this will help.

  • On the left side of my address bar it is showing that firefox has blocked content that is insecure, whenevr I'm using facebook or any other apps related to it.

    Firefox is blocking content from almost all the websites.
    It is even showing that for this page.
    Every time I refresh the facebook page/ an app on the facebook this will appear.
    Previously it used to crash firefox, then I upgraded it but since then it is just keeping on blocking if the gray/ geen colored padlock is active on the left side of the address bar.
    So every time I get this error I have to refresh the page & again disable protection on the page.
    If the website is verified then is firefox blocking almost everything.

    Hello,
    I would recommend running the latest version, Firefox 25. Improvements are always being made based on user feedback.
    Starting in Firefox 23, if a secure page includes certain types of insecure content, Firefox blocks the insecure content and a shield icon will appear in the address bar. See this article for more information about the new mixed content blocker: [[How does content that isn't secure affect my safety?]]
    To temporarily allow the mixed content to be displayed:
    *Click the '''shield icon''' [[Image:Mixed Content Shield]] in the address bar and choose '''Disable Protection on This Page''' from the dropdown menu.
    [[Image:Fx23MixedContentBlocker]]
    To allow insecure content to be displayed in all secure pages, enter '''about:config''' in the address bar and double-click on this preference, to toggle it from true to false:
    '''security.mixed_content.block_active_content'''
    You can also use this add-on instead, to toggle the preference:
    *[https://addons.mozilla.org/firefox/addon/toggle-mixed-active-content/ Toggle Mixed active content] add-on
    You may want to do this only for the current session, then reset the preference back to "true" and check back with the site to see whether it's been fixed, since this is a global setting that exposes you on all sites, not just the one you care about.
    Let us know if this helps!

Maybe you are looking for