LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices


Reply
  Search this Thread
Old 09-12-2021, 11:56 AM   #1
glennmcc
LQ Newbie
 
Registered: Jan 2021
Location: North Jackson, Ohio (USA)
Distribution: slackware64-current
Posts: 29

Rep: Reputation: Disabled
Firefox v92 https-only mode...


Has anyone else installed Firefox v92 and then had this strange and VERY irritating occurrence as did I last evening with FF v92 on Debian 11 ?

All of a sudden it was locked-in at 'https only' and would not allow access
any sites that were strictly on http and not https .

Checked the settings and it was set for "Don't enable https-only mode".

If that's how it's gonna be with FF v92.... than I'll be staying with older versions.

Just in case Slackware goes to v92 and the same thing happens...
have already saved a copy of the v91.1.0esr package to revert back to.

-rw-r--r-- 1 root root 56625768 Sep 6 13:07 /archives/saved_packages/mozilla-firefox-91.1.0esr-x86_64-1.txz
 
Old 09-12-2021, 12:27 PM   #2
LuckyCyborg
Senior Member
 
Registered: Mar 2010
Posts: 1,655

Rep: Reputation: 1366Reputation: 1366Reputation: 1366Reputation: 1366Reputation: 1366Reputation: 1366Reputation: 1366Reputation: 1366Reputation: 1366Reputation: 1366
Quote:
Originally Posted by glennmcc View Post
Has anyone else installed Firefox v92 and then had this strange and VERY irritating occurrence as did I last evening with FF v92 on Debian 11 ?

All of a sudden it was locked-in at 'https only' and would not allow access
any sites that were strictly on http and not https .

Checked the settings and it was set for "Don't enable https-only mode".

If that's how it's gonna be with FF v92.... than I'll be staying with older versions.

Just in case Slackware goes to v92 and the same thing happens...
have already saved a copy of the v91.1.0esr package to revert back to.

-rw-r--r-- 1 root root 56625768 Sep 6 13:07 /archives/saved_packages/mozilla-firefox-91.1.0esr-x86_64-1.txz
Unfortunately, those HTTP only sites are doomed. That's it.

And the switching to 91 ESR release as Slackware did, will only delay their doom with no more than ONE year.

The bad thing is that the next major ESR release, published after around ONE year in future, I guess will have no HTTP support at all - probably there will not be even a switch to enable them.

This ONE year of HTTP support is not so much. After all, this means roughly 20% of the time required to develop Slackware 15.0 and considering that a Slackware release has a support around 8 years, this ONE year represents roughly 12% of support time.

That's WHY I wonder if is really worth for Slackware 15.0 to claim that has HTTP support on its Firefox...

Last edited by LuckyCyborg; 09-12-2021 at 12:30 PM.
 
Old 09-12-2021, 12:29 PM   #3
TorC
Member
 
Registered: Dec 2020
Location: as far S and E as I want to go in the U.S.
Distribution: puppy, enchantment
Posts: 169

Rep: Reputation: 62
@glennmcc -- I have not tried v92.0 in anything other than https only mode, so cannot say.
The option to proceed to the insecure site does exist, so why doesadded security irritate so much, I wonder?

Go Ducks!

Last edited by TorC; 09-12-2021 at 12:31 PM. Reason: clarity
 
Old 09-12-2021, 04:23 PM   #4
lonestar_italy
Member
 
Registered: Nov 2010
Location: Italy
Distribution: Slackware64-current
Posts: 137

Rep: Reputation: 44
Enable/Disable HTTPS-Only Mode

https://support.mozilla.org/en-US/kb...ttps-only-mode
 
Old 09-13-2021, 01:01 AM   #5
glennmcc
LQ Newbie
 
Registered: Jan 2021
Location: North Jackson, Ohio (USA)
Distribution: slackware64-current
Posts: 29

Original Poster
Rep: Reputation: Disabled
lonestar_italy,

Thanks for the link but as stated in the original post....
it's already disabled but is still preventing access to http-only sites
by changing http in the URL's protocol to https which that site does not use.
 
Old 09-13-2021, 02:12 AM   #6
lonestar_italy
Member
 
Registered: Nov 2010
Location: Italy
Distribution: Slackware64-current
Posts: 137

Rep: Reputation: 44
Quote:
Originally Posted by glennmcc View Post
lonestar_italy,

Thanks for the link but as stated in the original post....
it's already disabled but is still preventing access to http-only sites
by changing http in the URL's protocol to https which that site does not use.
try also disable the browser.urlbar.autofill in about:config
 
Old 09-13-2021, 02:30 PM   #7
glennmcc
LQ Newbie
 
Registered: Jan 2021
Location: North Jackson, Ohio (USA)
Distribution: slackware64-current
Posts: 29

Original Poster
Rep: Reputation: Disabled
autofill also already disabled

All known options to keep it from happening have now been tried and still
manually entering http://glennmcc.org/ results in the URL being changed to https:///glennmcc.org/
the moment the Enter key is pressed.

Also, clicking a link to http://glennmcc.org/ or any other http URL
results in the URL being changed to https just as-if the setting were to always use https

The problem _seems_ to be that FF92 is ignoring the "Don't enable https-only mode" setting.

Last edited by glennmcc; 09-13-2021 at 02:36 PM.
 
Old 09-13-2021, 03:29 PM   #8
Didier Spaier
LQ Addict
 
Registered: Nov 2008
Location: Paris, France
Distribution: Slint64-14.2.1.2 on Lenovo Thinkpad W520
Posts: 10,072

Rep: Reputation: Disabled
Quote:
Originally Posted by glennmcc View Post
Also, clicking a link to http://glennmcc.org/ or any other http URL
results in the URL being changed to https just as-if the setting were to always use https
This can occur also if the server is set up this way, as is mine. Using any browser http://slint.fr will redirect to https://slint because I don't want any http connection to my server.
 
1 members found this post helpful.
Old 09-13-2021, 09:59 PM   #9
glennmcc
LQ Newbie
 
Registered: Jan 2021
Location: North Jackson, Ohio (USA)
Distribution: slackware64-current
Posts: 29

Original Poster
Rep: Reputation: Disabled
Such is not the case.

http://glennmcc.org/ is strictly HTTP... no HTTPS access available at-all.

The same for my own server running here at home on Slackware64-current

http://glennmcc.dynu.com/
 
Old 09-13-2021, 10:52 PM   #10
Didier Spaier
LQ Addict
 
Registered: Nov 2008
Location: Paris, France
Distribution: Slint64-14.2.1.2 on Lenovo Thinkpad W520
Posts: 10,072

Rep: Reputation: Disabled
Quote:
Originally Posted by glennmcc View Post
Such is not the case.

http://glennmcc.org/ is strictly HTTP... no HTTPS access available at-all.

The same for my own server running here at home on Slackware64-current

http://glennmcc.dynu.com/
This is perfectly fine. Just be aware that this will prevent more and more people to visit these websites, be it with firefox or other web browsers.
 
Old 09-14-2021, 09:51 AM   #11
glennmcc
LQ Newbie
 
Registered: Jan 2021
Location: North Jackson, Ohio (USA)
Distribution: slackware64-current
Posts: 29

Original Poster
Rep: Reputation: Disabled
http://glennmcc.dynu.com/my-stuff/videos/never_mind.web

I guess it was needless for me to post that link.
You won't be able to get it 'cus you have 'https-only' enabled.

;-)
 
Old 09-14-2021, 10:31 AM   #12
Didier Spaier
LQ Addict
 
Registered: Nov 2008
Location: Paris, France
Distribution: Slint64-14.2.1.2 on Lenovo Thinkpad W520
Posts: 10,072

Rep: Reputation: Disabled
Quote:
Originally Posted by glennmcc View Post
http://glennmcc.dynu.com/my-stuff/videos/never_mind.web

I guess it was needless for me to post that link.
You won't be able to get it 'cus you have 'https-only' enabled.

;-)
Code:
dance[~]$ firefox -v
Mozilla Firefox 91.1.0esr
 
Old 09-14-2021, 02:29 PM   #13
TheRealGrogan
Member
 
Registered: Oct 2010
Location: Ontario, Canada
Distribution: Slackware, LFS, Manjaro (for gaming)
Posts: 486

Rep: Reputation: 331Reputation: 331Reputation: 331Reputation: 331
This is not actually expected behaviour of Firefox 92, the setting for https-only mode still works. I'm not sure what's screwy about the package or environment you are using in your debian distro. I can go to your web site just fine.

I absolutely detest forced https where https is not necessary, so I'd know right away. If I type http:// to go to a site, it better damned well use http. My sites are http too, though lately I've given in and use certificates so https will also work.

I do my own Firefox builds, but consider unpacking binaries from mozilla.org to test it. You can unpack the archive and run it in place.

https://ftp.mozilla.org/pub/firefox/...x-92.0.tar.bz2

I'd probably start it like

Code:
./firefox -profilemanager
And start it with a new profile so it doesn't mess with your old one.
 
Old 09-14-2021, 10:16 PM   #14
drgibbon
Senior Member
 
Registered: Nov 2014
Distribution: Slackware64 -current
Posts: 1,110

Rep: Reputation: 817Reputation: 817Reputation: 817Reputation: 817Reputation: 817Reputation: 817Reputation: 817
Quote:
Originally Posted by glennmcc View Post
All of a sudden it was locked-in at 'https only' and would not allow access
any sites that were strictly on http and not https .
I tried HTTPS-Only Mode, but it wasn't as good yet as "Donít enable HTTPS-Only Mode" with HTTPS Everywhere.
 
Old 09-15-2021, 04:31 AM   #15
zeebra
Senior Member
 
Registered: Dec 2011
Distribution: Mageia, Slackware
Posts: 1,234
Blog Entries: 14

Rep: Reputation: 378Reputation: 378Reputation: 378Reputation: 378
Quote:
Originally Posted by TheRealGrogan View Post
I absolutely detest forced https where https is not necessary,

I do my own Firefox builds,
Really? How long does that take?

Well, actually, this matter of https is somewhat problematic and a threat to the free web. Not everyone can and/or will or even need https on their website, and in some cases it serves no purpose at all. Blocking or warning against http just threatens to split the web. And this promotion of https only is a threat to hobbyists and people with less resources and others as well.

I like https only where it serves a purpose. But http also serves a purpose, and not everything needs to be https. It seems to be more of an unreasonable hysteria at this point, feeding on people who don't understand web technology.
 
1 members found this post helpful.
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Mozilla Firefox 83 Is Now Available for Download with HTTPS-Only Mode, Improvements LXer Syndicated Linux News 0 11-17-2020 05:30 AM
LXer: Firefox 83 Enters Beta with HTTPS-Only Mode, WebRender Support for Intel Gen12 GPUs LXer Syndicated Linux News 0 10-21-2020 05:45 AM
https certication error , the page can not be loaded via https ust Linux - Server 2 11-21-2013 08:49 PM
redirect https://www.domain.com to https://domain.com decenter Linux - Server 4 09-13-2011 10:05 AM
apache 2.0 https to https redirect struct Linux - Software 1 04-22-2011 05:43 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware

All times are GMT -5. The time now is 11:44 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration