http(s) mixed content

Do not post support requests, bug reports or feature requests. Discuss phpBB here. Non-phpBB related discussion goes in General Discussion!
Scam Warning
User avatar
millipede
Registered User
Posts: 179
Joined: Mon Feb 25, 2008 5:13 am
Contact:

Re: http(s) mixed content

Post by millipede » Sat Aug 25, 2018 3:06 am

Just wanted to update that I found out the mixed content was for any images hosted outside of the site, from years back, on photobucket mostly.
On the index page I noticed the warning went away as soon as I added the s to http for my avatar.
More good news is the fact that photobucket images are showing up at all. I was pretty upset when I had that many broken images when they tried to get money from everyone. Didn't think they'd ever show up and I hadn't gone in to fix them all.

Have some things to think about still but, I think I have everything answered that I needed answered. Thanks everyone.

User avatar
AmigoJack
Registered User
Posts: 5656
Joined: Tue Jun 15, 2010 11:33 am
Location: グリーン ヒル ゾーン
Contact:

Re: http(s) mixed content

Post by AmigoJack » Sat Aug 25, 2018 11:21 pm

millipede wrote:
Sat Aug 25, 2018 3:06 am
Just wanted to update that I found out the mixed content was for any images hosted outside of the site, from years back, on photobucket mostly.
I could have pointed that out if you would have given links to the very sites you were talking of.

My lack of patience is a result from frustration over years when atavisms occur: starting a topic and then shifting its content far away from it is one thing. I'm pretty sure you're the first one (in about 10 times) actually having changed the topic title after I suggested doing so, so my hope in you is back for accepting self improvement. Wanting one thing while forgetting other things is another issue, like wanting HTTPS but then forgetting about HTTP - I still have no clue why everybody (including techniques/tests/safety benchmarks) want to enforce it when it should still be up to the client to decide which protocol it wants to use. It's also a thing of awareness: (website consuming) people should know the difference, thus being able to choose the protocol themselves - if the internet browser is "helpful" enough to test for both HTTP and HTTPS and then choose HTTPS (as per preferences) that's the best scenario.
The worst thing about censorship is ███████████
Affin wrote:
Tue Nov 20, 2018 9:51 am
The problem is probably not my English but you do not want to understand correctly.
...
We will not come anybody anyway, nevertheless, it's best to shit this.

User avatar
3Di
Former Team Member
Posts: 14477
Joined: Mon Apr 04, 2005 11:09 pm
Location: Milan (IT) Frankfurt (DE)
Name: Marco
Contact:

Re: http(s) mixed content

Post by 3Di » Sun Aug 26, 2018 6:59 am

millipede wrote:
Sat Aug 25, 2018 3:06 am
Just wanted to update that I found out the mixed content was ...
"mixed content in https website" ?¿?

https://www.whynopadlock.com/ and there are a lot of online tools like this, google is our friend.

or use chrome console or FF inspector or simply click on the orange unsecure padlock icon. :)
Please PM me only to request paid works. Thx.
Want to compensate me for my interest? Donate
My development's activity º PhpStorm's proud user
Extensions, Scripts, MOD porting, Update/Upgrades
✒️ Black Friday 2019 @ The Studio ▪️◾️

User avatar
millipede
Registered User
Posts: 179
Joined: Mon Feb 25, 2008 5:13 am
Contact:

Re: http(s) mixed content

Post by millipede » Sun Aug 26, 2018 7:55 pm

I could have pointed that out if you would have given links to the very sites you were talking of
yes, and no. The board index was one of those pages I saw that mixed content symbol but, someone else would not have. It was the TINY avatar by my name at the top of the page when I was logged in that I didn't even notice. And on a few pages(still going through them) someone else's avatar that didn't even display at all.
3Di wrote:
Sun Aug 26, 2018 6:59 am
millipede wrote:
Sat Aug 25, 2018 3:06 am
Just wanted to update that I found out the mixed content was ...
"mixed content in https website" ?¿?

https://www.whynopadlock.com/ and there are a lot of online tools like this, google is our friend.

or use chrome console or FF inspector or simply click on the orange unsecure padlock icon. :)
Google is not always a friend. I use another search engine but, the results can be frustrating. I don't always know exactly what keywords to use. I found one site that was supposed to check but it didn't work. I probably gave up searching for such a tool too quickly.
I don't use chrome... and, I inspect elements with firefox but, is there a way to click something and have it search the page for something specific? or is it just going through everything you can find a little at a time? (Nevermind that question, just opened it up to look... never used the search bar before, I had only used it to look at specific elements.)
I did find a link I wanted to change using that method but it was time consuming.

And clicking on the padlock didn't give me any specifics. Said there could be images or something of that nature but that's about all it said.
Thanks for the link though. I'll test it on a page when I find one that still has old image links to see if it shows what it needs to... and will bookmark it for future reference. EDIT: tested that site with a link already and sure enough, it pointed out the photobucket images that were using http. So I will definitely save that site in case I find a page and can't figure out what's not secure. Thanks again.

Thanks again to all.

User avatar
canonknipser
Registered User
Posts: 2096
Joined: Thu Sep 08, 2011 4:16 am
Location: Germany
Name: Frank Jakobs
Contact:

Re: http(s) mixed content

Post by canonknipser » Sun Aug 26, 2018 10:13 pm

If it's about external linked images via [img]-tag, maybe you can try this extension: https://www.phpbb.com/customise/db/exte ... s_as_link/
to turn image links to non-https-sides into simple links.
Greetings, Frank
phpbb.de support team member
English is not my native language - no support via PM or mail
New arrival - Extensions and scripts for phpBB

Post Reply

Return to “phpBB Discussion”