The default bug view has changed. See this FAQ.

I don't want the notice of insecure password/log-in on my website. You do not have permission to put it there. We have our own security process and have never had a problem.

---
I don't want the notice of insecure password/log-in on my website. You do not have permission to put it there. We have our own security process and have never had a problem.
RESOLVED WONTFIX

Status

()

Firefox
For bugs in Firefox Desktop, the Mozilla Foundation's web browser. For Firefox user interface issues in menus, developer tools, bookmarks, location bar, and preferences. Many Firefox bugs will either be filed here or in the Core product. (more info)
Security
For app-level security bugs.
If the problem relates to underlying components (PSM, NSS, Core, Toolkit) then please file it in the appropriate product instead of here.
Other Bugs
P1
normal
RESOLVED WONTFIX
5 hours ago
2 minutes ago
RESOLVED
WONTFIX

People

(Reporter: dgeorge, Unassigned)

Unassigned

Tracking

unspecified
All
Other
Iteration:
---
Points:
---
Bug Flags:

Firefox Tracking Flags

(Not tracked)

This bug is not currently tracked.
Tracking Status
platform-rel
firefox52
firefox53
firefox54
firefox55
firefox-esr45
firefox-esr52
relnote-firefox

Details

(URL)

0 votes
QA Whiteboard:
---
Has Regression Range:
---
Has STR:
---
Crash Signature:

Security

(public)

This bug is publicly visible.

User Story




















(Reporter)











Description

5 hours ago














:: Developer Documentation Request

      Request Type: Correction
     Gecko Version: unspecified
 Technical Contact: 

:: Details

Your notice of insecure password and/or log-in automatically appearing on the log-in for my website, Oil and Gas International is not wanted and was put there without our permission. Please remove it immediately. We have our own security system and it has never been breached in more than 15 years. Your notice is causing concern by our subscribers and is detrimental to our business.
Not a documentation bug.
Component: General → Untriaged
Product: Developer Documentation → Firefox






















Updated

an hour ago








CC: alex.gaynor






















Comment 2

30 minutes ago







offtopic










Comment hidden (offtopic) 








¯\_(ツ)_/¯
CC: scotthelme






















Comment 3

26 minutes ago














When your site requests a user's password over HTTP, the transmission of these passwords is done in the clear.  As such, anybody listening on the network would be able to record those passwords.

This puts not just users at risk when using your site, but also puts them at risk on any other website that they might share a password with yours.

These warnings are standard behavior in Firefox 51 and Chrome 56.  To prevent this error from occurring, please install a digital certificate (HTTPS) on your website.  There are many free and low-cost providers to available.  Mozilla also provides documentation and configuration examples to assist you with this:

https://wiki.mozilla.org/Security/Server_Side_TLS
Status: UNCONFIRMED → RESOLVED
CC: april
Last Resolved:
26 minutes ago
Component: Untriaged → Security
Resolution: --- → WONTFIX






















Updated

14 minutes ago








CC: dwilliams






















Updated

10 minutes ago








CC: fabrice






















Comment 4

7 minutes ago







offtopic










Comment hidden (offtopic) 








"own security system and it has never been breached in more than 15 years" .... 

Do you hear that noise? That's the roar of a thousand hackers screaming "Challenge accepted"! 

Seriously, you'd be better off using CloudFlare. Like, right now!
Restrict Comments: true

You need to log in
before you can comment on or make changes to this bug. 


















0%
10%
20%
30%
40%
50%
60%
70%
80%
90%
100%