火狐浏览器44会提示不安全,当用户在http页面输入密码时,必须在https页面。
Firefox will mark some HTTP pages as insecureFirefox 44 nightly builds now markHTTP webpages as affirmatively insecure if they contain password input fields.The " Connection is Not Secure"warning is also displayed even when the form is submitted to an HTTPS address.The reasoning for this is that if a man-in-the-middle attacker is in a positionto alter the contents of the unencrypted login form, he still has anopportunity to steal the user's credentials. For example, he could change theform's action to cause the password to be submitted to a different server, or injectJavaScript which steals the password before the form is even submitted.
| 
快来让网站https吧
共 1 个关于火狐浏览器 44 版新亮点透露的回复 最后回复于 2015-11-23 10:55