Anyone else noticing "Not Secure" triangle on the left of the URL here in the forums on some threads

Discussion in 'The Veterans' Lounge' started by Veteran_BetaTester, Sep 4, 2020.

  1. Veteran_BetaTester PIZZA!

    When I click on the thread
    here in The Veteran's Lounge, I get a Not Secure triangle on the left side of the URL:
    Triangle icon (Would be here before https) https://forums.da
    Veteran_BetaTester, Sep 4, 2020
    #1 Last edited by Veteran_BetaTester, Sep 4, 2020

  2. dreamweaver Community Manager

    Hadn't before, see it now. I'll ask WebDev.
    dreamweaver, Sep 4, 2020
    #2
    Veteran_BetaTester likes this.

  3. Fanra https://everquest.fanra.info

    Yes. The reason is, I believe, that someone has a signature image in a post in the thread which is not https.

    For example, my signature image is https://drive.google.com/uc?export=view&id=1Ar3OIYWeQHV0WheH-lcf2acQ0fhEv718

    Which looks like:

    [IMG]

    If you note, I use https. However, if it was from a place which used http, then the URL of the thread would note that the entire webpage is not completely secure.
    Fanra, Sep 4, 2020
    #3
    Veteran_BetaTester likes this.

  4. Veteran_BetaTester PIZZA!

    UPDATE:
    If I sign out, clear browser data in (the up to date) Google Chrome. Then exit Chrome. Click back to these forums (not signed in), go to the thread "You asked! Torment of Velious is on Sale!".
    There is a lock icon, the site is secure.

    I click Log In, go through the authentication process of click on the taxi cars in the picture, soon as I click Sign In after doing that.. I click Veteran Lounge (site safe), Click that thread " You asked! Torment of Velius is on Sale!"
    BAM not safe.
    I click this thread, it is safe.

    Typing this out, I go to the top of the page, right click Veteran Lounge -open in a new tab and chose thread " Invis and ITU?"
    Not safe!

    I go to the top of the page, right click Veteran Lounge -open in a new tab and chose thread " EQ Next! "
    Not safe!

    What is happening?
    Veteran_BetaTester, Sep 4, 2020
    #4 Last edited by Veteran_BetaTester, Sep 4, 2020

  5. Fanra https://everquest.fanra.info

    Fanra, Sep 4, 2020
    #5 Last edited by Fanra, Sep 4, 2020
    Veteran_BetaTester likes this.

  6. Veteran_BetaTester PIZZA!

    I was thinking it had to so with a reply from someone that had a sig!

    I am holding off opening my just downloaded malwarebytes lol because of this thought.

    Maybe development can suggest the web team to put in a block for none https to stop the false flagging. :)
    Thank you Fanra for this reply!
    Thank you Dreamweaver for looking into this:)
    Veteran_BetaTester, Sep 4, 2020
    #6 Last edited by Veteran_BetaTester, Sep 4, 2020

  7. Fanra https://everquest.fanra.info

    The Web Dev team can probably force https on images, however, some images would fail to work if they came from a domain that does not support https.

    In 2020, every place should support https and if it does not, then it deserves to be left behind. You can get free SSL certificates, so it isn't a cost issue.
    Fanra, Sep 4, 2020
    #7 Last edited by Fanra, Sep 4, 2020
    Skuz and Veteran_BetaTester like this.

  8. Veteran_BetaTester PIZZA!

    Is this why some sig images are blank :)?

    BAN to those that use bad sigs! (I bet they are Troll race too!)
    Veteran_BetaTester, Sep 4, 2020
    #8

  9. Veteran_BetaTester PIZZA!

    Those sigs both show https for me. Well, first it shows eq.sig............. until you click that with your mouse to expand the visual of http or https, it shows https on both.

    EDIT at first, there is " ! " next to it (eq.sig.ma..) , then it self corrects. I believe chrome is auto interpreting it to be https from http for that brief half a second.
    Veteran_BetaTester, Sep 4, 2020
    #9 Last edited by Veteran_BetaTester, Sep 4, 2020

  10. Fanra https://everquest.fanra.info

    They are magelo.com images. Magelo supports SSL, so your web browser is probably changing it for you when you click on it.

    But if you examine the web page (by clicking the Not Secure triangle), depending on your browser, it usually opens up a window explaining something like, "Parts of the page are not secure (like images)". Then if you click on More Information, you can get a list of all images on the page. And if you scroll through the list you can see those two are listed as http, not https.

    The person who has that signature can just change their signature URL from http to https and it will work fine and not give the not secure warning.
    Fanra, Sep 4, 2020
    #10 Last edited by Fanra, Sep 4, 2020

  11. Fanra https://everquest.fanra.info

    I would say yes to this.
    Fanra, Sep 4, 2020
    #11
    Veteran_BetaTester likes this.

  12. Veteran_BetaTester PIZZA!

    I'm such an idiot, I am going back to click all the sigs that might be unsafe lol!

    OK I reported the issue, dreamweaver take it from there :)
    I am also using ADP " Adblock Plus - free ad blocker " a google chrome extension.
    Maybe that is slowing down the process to correct the http to https automatically? But I have always used this extension and no issues on these forums in the past.
    Veteran_BetaTester, Sep 4, 2020
    #12

  13. Veteran_BetaTester PIZZA!

    In Google Chrome, you can right click his sig, and chose Inspect. You are right, it IS http.
    Veteran_BetaTester, Sep 4, 2020
    #13

  14. Riou EQResource


    Idk if their forum software can, but it is possible to proxy save images as https that are http
    Riou, Sep 4, 2020
    #14

  15. Nniki Augur

    Nniki, Sep 4, 2020
    #15
    Riou and Fanra like this.