|https in red, crossed out||guenthpw||1/22/09 7:28 AM|
When accessing my credit card account the URL has its https in red and crossed out. Nowhere in the help pages can I find an explanation of this
|Re: https in red, crossed out||mudwoman||10/3/10 7:42 PM|
I think the "fix" I'm going for will be to use IE instead of Chrome. There are a lot of other problems with Chrome, including sites that don't load the first time, and don't even get me STARTED on the PDF bugs...
|Re: https in red, crossed out||nathan.awesome||10/19/10 3:56 PM|
Will the https "time out" if I take to long on a site?
|Re: https in red, crossed out||mdhr24||10/19/10 9:57 PM|
yes the https does time out if you take too long on the website..
and people just don't make any transitions or put in sensitive data if the https is not green..
just put the security and privacy settings to the highest in options..
|Re: https in red, crossed out||mudwoman||10/20/10 8:41 AM|
I think the "fix" is that Google needs to debug their software. I'm not going to be first in line to get one of their self-driving cars.
|Re: https in red, crossed out||CraigJ88||10/20/10 9:03 AM|
While I don't want to have this become a kvetch session, I had hoped for some sort of response from Google on this issue or at least an acknowledgment. There are definitely bugs in that area of code unless Mozilla, Apple, Opera and Microsoft have it wrong. The above suggestions to change security settings are not helpful if a potential customer leaves your site due to a bug in the browser. The average user is not going to read this thread, and is not going to understand that the page is actually secure in spite of the red message. They are most likely going to leave.
Fortunately the average user isn't using Chrome...
|Re: https in red, crossed out||whoareyou||10/30/10 3:17 AM|
i tried to buy an item at bestbuy.com and i saw this red https crossed out.
i went it and ordered the product.
i was able to get my product as ordered.
i tried to buy again at the same site and i still see the red https crossed out.
here's what happened after clicking the red https
the identity of this website has been verified by cybertrust sureserver standard validation CA.
Your connection to www-ssl.bestbuy.com is encrypted with 256-bit encryption.
However, this page includes other resources which are not secure. Theses
resources can be viewed by others while in transit, and can be modified by an
attacker to change the behavior of the page.
The connection is encrypted using AES_256_CBC, with SHA1 for message
authentication and RSA as the key exchange mechanism.
The connection is not compressed.
issued to www-ssl.bestbuy.com
issued by cybertrust sureserver standard validation CA
valid from 7/14/2010-7/14/2011
|Re: https in red, crossed out||jivkolev||11/2/10 11:04 AM|
I am using Chrome 7.0.517.41 beta.
I get the red crossed out https on: https://mail.google.com/mail/?shva=1#inbox
When I click on the crossed https I get:
The identity of this website has been verified by Thawte SGC CA.
Your connection to mail.google.com is encrypted with 128-bit encryption.
However, this page includes other resources which are not secure. ThesesThe connection is encrypted using RC4_128, with SHA1 for message
authentication and RSA as the key exchange mechanism.Visit history:
You first visited this site on Aug. 4, 2010
|Re: https in red, crossed out||jivkolev||11/2/10 11:07 AM|
Forgot to add that tried to log in gmail with firefox 3.6.10 and all looks normal.
|Re: https in red, crossed out||rtr100bills||11/3/10 5:53 AM|
I have the lock with the Red HTTP and the slash mark. It always has struck me as silly that this only happens on Google sites! I was reading e-mail in my G-Mail account and everything was fine. As I was reading, the HTTP, turned red. There was no warning, no error messages nothing out of the ordinary. I am using the latest version of Chrome. Google should really fix this as it will really scare some folks. It is pretty bad when Googl does not trust another Google site.
|Re: https in red, crossed out||lbjvg||11/11/10 6:41 PM|
Why do I get a red https that is crossed out when I go to my google documents page? I am using chrome 7.0.517.44
|Re: https in red, crossed out||Adjoho||11/11/10 10:08 PM|
Yup. all of the above. Works fine in Firefox. See you later Google and Chrome. Pathetic work.
|Re: https in red, crossed out||Polanve||11/14/10 2:02 PM|
It is ridiculous that google docs includes unsecure items. I may just move all my stuff to skydrive.
|Re: https in red, crossed out||krbabu||11/15/10 8:27 PM|
I agree with rtr100bills. Why is it that Google Chrome decides to mistrust Google's own Sites?
|Re: https in red, crossed out||lemarxav2||11/16/10 7:40 PM|
here is the solution, maybe! I had the same problem present at top by guenthpw, rachelrounds, d-ray and others, with google sites, documents, my bank, etc, etc, etc.... I've observed that with other navigators as IE 8 I could prosecute without problems. And then, what I did to solve it? Nothing more that change my date that really was wrong....
Yes, I know, other peoples reported that your time and date settings aren't wrong, ok, but try to change a time your date in wrong manner, open your Chrome, try to enter in any https that presents error....
Ok, it will not work, but now close your Chrome, set correctly your date, open and close your Chrome window one or two times and try again to enter in https that was not working.
What was happens??? The red https crossed out disappeared? With me it worked very, very well.
Told us, please!!!!
|Re: https in red, crossed out||mudwoman||11/17/10 9:06 AM|
Well, I'll be - either lemarxav2's time change thing worked, or Google fixed the problem. (My money's on lemarxav2.)
|Re: https in red, crossed out||breecummins||11/17/10 9:33 AM|
I get the red crossed out https on gmail, but only when I click the gmail link from my google calendar. Right-clicking on the red x gives me the same connection error as WaveWalker. If I open a new tab and manually enter gmail.com, then I don't have any problems. I am using Chrome 7.0.517.44 in Mac OS 10.5.8.
|Re: https in red, crossed out||throble||11/17/10 9:36 AM|
Guys, stop panicking, I think Chrome (or any other browser, I suppose, at least Opera too) displays https warning as soon as you open an email, that loads images from external sources - these sources are not https, which is what the browser actually telling you.
|Re: https in red, crossed out||mudwoman||11/17/10 1:14 PM|
It's not just email, though. It's other websites that don't show up as insecure in other browsers. But I don't use Chrome that much, anyway, because it's a pain, and I have better things to do.
"Damn it, Jim, I'm a [fill in the blank], not an IT tech!"
|Re: https in red, crossed out||magnumrtawd||11/22/10 1:10 PM|
I have this problem when accessing my google calender with chrome!!!
|Re: https in red, crossed out||Dracco121||12/9/10 11:53 AM|
had https crossed in red error .. fixing time and date and closing all google chrome windows even better restarting ...worked great on my side ... thanks :)
|Re: https in red, crossed out||rwvo||12/10/10 1:44 AM|
I'm getting the crossed out https on the main page of google docs, and in my only two (text) documents in that account (one is shared with others, the other one is private). I checked several of my spreadsheets (both shared and private), but for these everything is fine.
The error message (that pops up when clicking the lock symbol to the left of https) contains the phrase "However, this page includes other resources which are not secure").
Intermezzo: while I was typing this, I checked the two docs again that gave me the crossed out https just minutes ago, and everything is fine and green now. So after instant search, we also get instant bug fixes? Awesome! :-)
Still getting the crossed out https on the google docs main ("all items") page, though.
|Re: https in red, crossed out||rwvo||12/10/10 1:49 AM|
Update: the "instant bugfix" has been unfixed again.
|Re: https in red, crossed out||dahlia17||12/11/10 7:08 AM|
I use McAfee Secure on my site. They have not found any issues with my store even though I also get the Google Chrome cross-off on the https page. As for changing the date and time on my machine, that doesn't help with customers' view of the site. There has to be a better solution/correction.
|Re: https in red, crossed out||agl||12/11/10 12:59 PM|
|Re: https in red, crossed out||Detlev Eller||12/15/10 3:45 AM|
All resources MUST be loaded from a SSL host.
|Re: https in red, crossed out||rwvo||12/15/10 7:57 AM|
I also checked the source of the page, and searched for "http:". I found several occurrences, all of them in property values, such as:
config['mslmu'] = "http://docs.google.com/support/bin/answer.py?answer\x3d86152\x26topic\x3d8625\x26hl\x3den";
That should be safe, I guess, as long as the page doesn't load those http:-resources. But maybe the part of the Chrome code that checks whether a https-page contains unencrypted resources trips over those http-references?
BTW: I guess all the http-references could as well be https-references.
|Re: https in red, crossed out||oldmisstreacle||12/29/10 9:20 AM|
I have the https crossed out most of the time when using my Google calendar. How do I get back to the safe calendar? I use Windows 7 and Google Chrome
|Re: https in red, crossed out||tppathrose||1/10/11 3:55 AM|
what should u do to remove dat red cross . i get it wen i enetr gmail .but it is not there in the main google home
|Re: https in red, crossed out||Connorlaa||1/10/11 12:34 PM|
I too had this problem, this red line through http problem disappeared when i used mozilla firefoz, i got it for free, now i use google chrome for some things and firefox for others, i recommend that if you get this problem you download another web browser and use it.
|Re: https in red, crossed out||CraigJ88||1/10/11 12:42 PM|
Clearly no one from Google is reading this thread and they don't take this problem seriously. This is most definitely an easily reproducible bug in the browser itself and not in WebKit. You guys decide to be the new Microsoft or something?
|Re: https in red, crossed out||magnumrtawd||1/10/11 12:46 PM|
That is true !!! AND, I NEVER HAD MY ADDRESS BOOK HI-JACKED WITH YAHOO!!!
|Re: https in red, crossed out||agl||1/10/11 12:55 PM|
CraigJ88: yes, we do read this thread. Mixed scripting on Google properties is certainly a problem and something that I continue to bring up with the teams in question. However, in all the cases that I've checked, Chrome is reporting the issue correctly. So I don't believe that it's a Chrome issue and thus not something which I can fix myself.
|Re: https in red, crossed out||rwvo||1/10/11 1:04 PM|
agl: may I offer to help to pinpoint the problem? I have a google doc with just a little bit of text, that shows the crossed-out https, using chrome on Mac OS X. I'd be willing to share the document with google engineers; perhaps they can reproduce the problem.
|Re: https in red, crossed out||agl||1/10/11 1:14 PM|
If you then reload the page you'll often see a log entry like:
The page at XXX displayed insecure content from YYY
Those are the insecure resources being loaded. Docs just needs to fix this and get the fix out to the world.
|Re: https in red, crossed out||rwvo||1/10/11 1:25 PM|
agl: I'm getting "Resource interpreted as image but transferred with MIME type text/html." and then a "Failed to load resource". No log entries about insecure content, though. For a screen shot with more details, see goo.gl/6CY93
|Re: https in red, crossed out||agl||1/10/11 1:29 PM|
rwvo: I wonder if the resource which failed to load was an HTTP URL. I can't see the beginning of the URL unfortunately. Either way, that's interesting. Can you share the doc with a...@chromium.org and I'll see if I can reproduce.
|Re: https in red, crossed out||Baskettcase||1/10/11 2:32 PM|
I was having the same issues and I fixed everything on the site I was working on and it was still showing the red cross. I finally just restarted google chrome (8.0.552.231) on OS X 10.6.6 and now it shows secure. It's almost like it caches the information and the restart told it to pull a new copy of the certificate. I held down my shift key while refreshing and that didn't work either. Im not sure if that helps you agl, but hopefully it does.
|Re: https in red, crossed out||agl||1/10/11 2:35 PM|
Baskettcase: if the red cross was caused by a certificate error on the site (which is what it sounds like from your description) then Chrome does, indeed, cache that an error occured as part of the metadata in the disk cache.
|Re: https in red, crossed out||Baskettcase||1/10/11 2:42 PM|
|Re: https in red, crossed out||Baskettcase||1/10/11 2:42 PM|
As a business colleague said, "if its cached on "good" and the site gets hacked...". It's a good point...
|Re: https in red, crossed out||agl||1/10/11 2:46 PM|
|Re: https in red, crossed out||agl||1/11/11 9:48 AM|
After working with rwvo we pinned down a reproducible case involving iGoogle. There is a bug in the interaction with iGoogle and Google Docs which we need to fix and which causes valid mixed scripting warnings in Chrome. It doesn't trigger a warning in Firefox, but that's a deficiency of Firefox's mixed scripting tracking.
Baskettcase: I can't find any issues with the cache. I suspect that one of two things occured:
1) Changing the certificates didn't involve restarting the server, thus the HTTPS connections with the bad certificate were still active.
2) Not all tabs from that origin were closed. Once an origin has received mixed scripting it is poisoned and refreshing isn't sufficient to clear it up. You have to close all tabs to kill the render process.
|Re: https in red, crossed out||Baskettcase||1/11/11 11:37 AM|
1. I didn't change the certificate so this one doesn't apply
2. hmm.. that's possible. I don't think I had another window/tab open, but my memory isn't 100% since that was yesterday :) Im pretty certain there was only one, but Ill watch for that next time.
|Re: https in red, crossed out||Colby Seider||1/12/11 7:26 AM|
On the console, I was able to display the warnings generated when the page loads. Two warnings were remedied by turning off Web Clips. The last one is just sinister, but, the warning text shows the following URL:
Can someone tell us what this means?
|Re: https in red, crossed out||modestobg||1/12/11 7:40 AM|
try changing the date on windows to a PREVIOUS date. then just putit back. worked with me.
|Re: https in red, crossed out||ashAnaestan||1/12/11 8:45 AM|
i tried changing date n time on windows to some random PREVIOUS date, and when i opened gmail in chrome, the "https" was green but when i changed the date n time back to the CORRECT date, n restarted chrome again, the "https" reverted back to the red thing with cross....
so wat is actually happening?
|Re: https in red, crossed out||Sentrax||1/12/11 9:09 AM|
I had same results as ashAnaestan. I'm a new user to Chrome, and I like it, but this problem is worrying me now and making feel insecure about using chrome and ANY other browsing program really. I've used chrome for about a week now, and I've checked my Gmail regularly and didnt have any issue's until today. I had same problem with my School's webpage. Changing the date seemed to fix the school one...for now. But Gmail is still affected.
What is causing this recent change? Ive looked in the Java script Console under warnings and I have nothing there. Is there a fix for this or is it something that cant be prevented and as long as I trust the site should i cast my concerns to the side?
|Re: https in red, crossed out||Sentrax||1/12/11 9:38 AM|
I tried the fix again, does not work for me. My school website has gotten the X again too.
|Re: https in red, crossed out||agl||1/12/11 9:42 AM|
If you are seeing mixed scripting warnings (red "https" with a strike through, clicking the padlock says "These resources ... can be modified ... to change behavior") then the site in question has a security issue. This includes Google properties; they aren't perfect and I work to fix them where I can.
Many people have reported issues with Chrome's detection of mixed scripting issues in the past and *every* time, the problem has been with the site. Chrome's mixed scripting detection detects cases which Firefox and other browsers miss, which is why some sites have a warning only in Chrome.
Any bug reports need to be very detailed. Most importantly they need to contain every navigation taken from a fresh instance of Chrome to the problem. rwvo reported an issue in sufficient detail and I pin-pointed an issue between Google Docs and iGoogle, which is getting fixed.
|Re: https in red, crossed out||angy4777||1/12/11 9:49 AM|
I looked at the information after clicking on the x to see what the prob;em is it is only on the gmail and google voice websites! Google what is wrong with your website?
|Re: https in red, crossed out||Lelaa||1/12/11 9:50 AM|
All of a sudden, I got red padlock with "page includes other resources which are not secure (...)" on gmail and some other sites this afternoon. Actually, this is the first time something like that happened, and I've been using Chrome for a very long time. My windows time is automatically synchronized.
|Re: https in red, crossed out||ashAnaestan||1/12/11 10:00 AM|
@agl: ok this is wat happened:
i opened google chrome from start, and typed in "https://mail.google.com/", while the page was loading, the "https" was actually in green. but after the loading completed, the "https" became red with the strike through.
it only happened today. previously when i was using gmail on chrome, it was always green.
|Re: https in red, crossed out||Lelaa||1/12/11 10:05 AM|
Oh, btw, now Google calendar also shows red padlock. ctr-shift-i console shows no errors, just the usual stuff
|Re: https in red, crossed out||The L||1/12/11 10:07 AM|
I believe I picked up my warning by not paying attention and opening some spam. I gave the fixes listed here a shot with no success. Here are the details as best I can provide.
I Navigate from Google Home and hit the Gmail tab and get the "These resources ... can be modified ... to change behavior" warning.
Checked Ctrl+shift+I, console showed no warnings or errors
No pro, but I tried checking page source, searched 'https' and found two that looked different -
ex. ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';
(document.getElementsByTagName('head') || document.getElementsByTagName('body')).appendChild(ga);
agl, I hope that helps you and ultimately helps me.
Windows 7, up to date Chrome
|Re: https in red, crossed out||agl||1/12/11 10:08 AM|
|Re: https in red, crossed out||djmcnz||1/12/11 10:09 AM|
@agl: In this case the common denominator is Chrome on Windows, not the site as you imply.
Starting today 11/1/11 (coincidence?) the following sites all exhibited the same behavior in Chrome 8.0.552.224 and not in IE or FF.
My credit card company
I have never had this problem before.
*Any* way of navigating to the affected sites displayed the same symptoms (manually typed, from link, from bookmark).
I fixed this - and most certainly the site admins *did not* - by following the steps I explained above.
|Re: https in red, crossed out||golfwins||1/12/11 10:11 AM|
AGL, this is also happening on our Intranet starting today, so I don't think its related to only google sites. I could also do some testing if you would like me to email you. I'm MCSE so i'm technical, just not a web guy. Thanks.
|Re: https in red, crossed out||golfwins||1/12/11 10:12 AM|
Dj's solution did not work for me on Vista w/Chrome 8.0.552.224.
|Re: https in red, crossed out||Sentrax||1/12/11 10:16 AM|
So basically this is the same as the continue viewing insecure content window from IE. I should be able to trust sites that I have in the past with the same reservations I had for them, while using Google Chrome as my browser and understanding that the warning is basically the same thing. Even though it is possibly more anal then IE and defiantly more so then FireFox.
I understand that not every site will and can be secure, unless we live in a perfect world. I just want to be sure for the most part I'm not taking any greater security risk using Chrome then I have before using other browsing software.
I do still find it strange that it took almost a week for this issue to arise.
I get this from my Schools webpage:
I open Chrome select my bookmark
Continue to site that is green for a second then turns red with the strike-through.
These are the errors I'm receiving
Resource interpreted as script but transferred with MIME type .
Resource interpreted as image but transferred with MIME type .
I cant see any other warnings. All resources are from https.
Gmail isn't giving any warnings....is this due to my mail content or?
If i can give you any more information that is relevant please let me know.
|Re: https in red, crossed out||robert4380||1/12/11 10:23 AM|
I too started having the "red https with the line through it" problem in Google Chrome this morning. I have the latest version of Chrome installed on my Windows 7 laptop and have never had an issue with Chrome until now. I am certainly not a power user or anything, and I haven't changed any of the settings in Chrome or messed with extensions. My web browsing habits aren't anything out of the ordinary, so I found it strange that when I tried logging in to secure sites that I was getting the https showing in red with a line through it. Doing an online search brought me to this forum, so I'll detail my experiences below.
If I go to the gmail.com page, the https shows up like normal. It is only when I enter my username and password and when gmail loads that the https switches over to red with a line through it. Strange. Next I tried my bank's website. Same thing. Then my credit card's website, same thing. All of these secure websites that I have previously been able to access just fine in Chrome are now showing up as unsecure with the red warning in the address bar.
The only other browser I have on my system is the latest Internet Explorer, and I tried those exact same websites with IE and everything was fine. I got the padlock displaying correctly to let me know I was securely logged in.
Some of you above have suggested that the date/time of the computer might be off and that's what's causing this. My date/time are correct and are set to sync automatically with Microsoft's time server. I shouldn't have to readjust the clock in any way since this problem appears isolated to Google Chrome, since IE works fine.
As a related bit of info, last night (Tuesday) I was prompted by Microsoft Update to download 4 new updates, some of which were security updates. As far as I know, everything in Chrome was fine before last night, so now that it's the day after and Chrome is busted, maybe the Microsoft Updates did something to break Chrome? I have no idea if that's the case or not, but it is an odd coincidence.
Obviously, I'm not going to keep using Chrome if it says that I'm logging in unsecured to certain websites. Like I said, IE is secure and functions fine, so until Chrome is patched/fixed/whatever, I'll keep monitoring this forum to see if anything new develops. Any suggestions are most appreciated. Thanks!
|Re: https in red, crossed out||djmcnz||1/12/11 10:28 AM|
@robert4380: Did you try manually adjusting the time to see if it worked?
@anybody: regarding the Microsoft updates robert4380 refers to, I have some pending and *not* installed (KB2419640, KB976902, KB890830, KB2447568, KB2454826, KB982110) so they are probably not the cause.
|Re: https in red, crossed out||Lelaa||1/12/11 10:30 AM|
@robert4380: good point on the updates - in my case the red padlock started appearing right after today's updates
|Re: https in red, crossed out||CalebBlanton||1/12/11 10:45 AM|
I too am experiencing the red crossed out HTTPS on all of my sites - Chrome says that some content is not secure but all content is either relative (implicit HTTPS) or explicitly HTTPS. Works in IE, FF, Opera. I thought for a minute that this was due to the Google Analytics tracking code, but removing this (and closing all Chrome instances to bypass caching) still doesn't fix the issue.
This started happening today and my clients called and said there were certificate issues - I've recommended they use Chrome given it is so much faster and now I hate to say that I regret that recommendation.
This also happens on Twitter, Microsoft and other huge sites. Something is seriously wrong with Chrome this morning and I find myself missing the days when I had to download an update and install. I love the new "auto update" model that Chrome has adopted (better than being annoyed by update warnings every 2 days like the Java runtime) but this model only works if Google does proper QA on its releases.
Google: Not only does this issue need to be fixed ASAP, I suggest you take a good look at your testing processes to see how you can prevent this type of bug getting into a production release in the future.
|Re: https in red, crossed out||djmcnz||1/12/11 10:47 AM|
@anybody: I made a mistake in my first post and *incorrectly* adjusted the date.
When I set the date to yesterday (11-JAN-2011) the problem goes away, when I set the date to today (12-JAN-2011) the problem returns for all https sites.
Sorry for putting you to any unnecessary effort.
|Re: https in red, crossed out||Sentrax||1/12/11 10:47 AM|
Concerning the windows updates. I have automatic updates disabled for windows. So i have not installed any sense last week. But I too just started having this problem this morning. 1/12/2011. I do not think its because of the updates.
My main question is : Why are there issues with numerous sites just happening today with Chrome users, who have not had issues with those same sites in the past?
|Re: https in red, crossed out||Sentrax||1/12/11 10:50 AM|
@CalebBlanton Thank you for answering my question. Google chrome does update itself, and this OBVIOUSLY is a bug IN chrome itself.
I agree 100% with every thing else CalebBlanton had to say as suggestions to ensure this doesn't happen again.
|Re: https in red, crossed out||agl||1/12/11 10:54 AM|
We pushed updates to dev and beta channels in the past couple of days. Please indicate the channel that you're on when reporting issues (or just report the version number displayed under the wrench menu, "About Google Chrome").
|Re: https in red, crossed out||Sentrax||1/12/11 10:59 AM|
Chrome version 8.0.552.224
|Re: https in red, crossed out||Lelaa||1/12/11 11:00 AM|
|Re: https in red, crossed out||dlastyan||1/12/11 11:00 AM|
@ agl: I'm running Chrome 8.0.552.224. GMail is having the same problem that people have mentioned earlier.
Inspecting the Element reveals only one Java-related error:
|Re: https in red, crossed out||Scryer||1/12/11 11:06 AM|
Same red https: crossed out with Chrome and Gmail. I noticed it today for the first time, but can't guarantee it wasn't happening earlier. I went into the Gmail settings and told it to "always use https:" in the browser settings, with no effect.
Paypal website shows the https: in green.
Amazon's login screen has https: in green.
Win 7 Pro 64-bit on automatic Microsoft updates.
|Re: https in red, crossed out||alimujahidshah||1/12/11 11:15 AM|
with 100% gurentee I got the solution...
go and uninstall google talk plugin - and then it would turn it to green...
I was having this issue with gmail but as soon as I have uninstall the plugin - its turned to green...
@agl try this thing on independent system with test account and you might get it right!!
|Re: https in red, crossed out||Sentrax||1/12/11 11:23 AM|
@alimujahidshah I do not have the google talk plugin installed, or never have had it. I still have the issue. I do not think its related.
|Re: https in red, crossed out||Scryer||1/12/11 11:25 AM|
Update to my report above: my system hadn't automatically installed the latest three Win7 Pro 64bit updates yet. I connected through the Control Panel, installed updates KB2419640 KB890830 KB2454826 and rebooted, and now my Chrome/Gmail https: is in green. My previous Microsoft updates had been 4 Jan 2011.
|Re: https in red, crossed out||DrewG||1/12/11 11:25 AM|
Same issue here... GMail crossed out in red, other https sites (e.g. my bank account) OK. Win 7 home premium, 64-bit, chrome 8.0.552.224. I have only just spotted it today, may have been going on longer, I don't know.
|Re: https in red, crossed out||Sentrax||1/12/11 11:28 AM|
@scyer Please test with opening closing the browser. I had successfully applied the date fix others were talking about, involved with a reboot to the system, all seemed well. Until I open and closed and reopened the browser only to discover the issue returning.
|Re: https in red, crossed out||djmcnz||1/12/11 11:31 AM|
Okay, I've just done this and it works even after a reboot. It requires a condition to be true though:
Set Windows date to yesterday (11-JAN-2011)
Opened Chrome, no errors on https sites (if you still have errors this method might not work)
Kept Chrome open and changed system date to today (12-JAN-2011)
- that step seems to have no impact on the current Chrome session (?)
- (system date is now accurate)
Opened Chrome, no problems on any https sites
Still no problems on previous problem sites
|Re: https in red, crossed out||Sentrax||1/12/11 11:36 AM|
@djmcnz Please let me know if it last's. I did do a similar experiment to yours with promising results, but soon after problems reverted.
|Re: https in red, crossed out||Scryer||1/12/11 11:57 AM|
|Re: https in red, crossed out||Sentrax||1/12/11 12:01 PM|
@Scryer Thats good to hear, but confusing. Ill have the check the updates and see what the pertain to.
Has anyone else had success with the microsoft updates?
|Re: https in red, crossed out||agl||1/12/11 12:20 PM|
( is the primary thread for this issue, please comment there)
We have no idea what's going on. Chrome hasn't changed; there have been no stable updates for several weeks. None the less, there's a significant uptick in reports this morning and it appears to be affecting non-Google sites as well (according to reports).
None of the developers can reproduce the issue so we are trying to understand what distinguishes those affected from those not affected.
|Re: https in red, crossed out||Scryer||1/12/11 12:20 PM|
One more note on my luck with Microsoft updates - I didn't dink the system clock date before or after the update. It's still on the current Pacific time. Amazon, Paypal and gmail are all still with green https:.
Win 7 Pro 64-bit
|Re: https in red, crossed out||Sentrax||1/12/11 12:21 PM|
Ok verification to the microsoft updates Scryer posted.
Installed the updates and they have seemed to correct the issue. Ive open closed the browser a few times as well as clearing all browsing data. Issue still seems resolved.
Ill keep monitoring and post back if any other issue's arise.
|Re: https in red, crossed out||Sentrax||1/12/11 12:23 PM|
Oh and sorry i didn't post this before.
Windows 7 Ultimate 64-bit
Again updates Scryer posted seem successful in solving this issue.
|Re: https in red, crossed out||Lelaa||1/12/11 12:49 PM|
In my case it seems the mentioned updates (list below) actually are related to causing the problem, not helping solving it. Right up to few hours ago there were no problems with "red padlock", somewhere around the time the system started updating windows, I also noticed the problem with Chrome. Maybe the two are totally unrelated, but still - nothing else happened today.
Windows 7 64bit
Chrome version 8.0.552.224
The following updates were installed today on my system - prior, or around the time of "the rise of the red padlock":
Update for Windows 7 for x64-based Systems (KB2454826)
Update for Windows 7 for x64-based Systems (KB976902)
Security Update for Windows 7 for x64-based Systems (KB2419640)
Windows Malicious Software Removal Tool x64 - January 2011 (KB890830)
|Re: https in red, crossed out||agl||1/12/11 12:54 PM|
People experiencing this issue, please email me the contents of chrome://net-internals/#serviceProviders (my email address is my username followed by @chromium.org)
If you can close Chrome and reproduce the issue, after starting Chrome afresh, quickly, then please email me the contents of chrome://net-internals (click "Dump to text")
|Re: https in red, crossed out||cherikboss||1/12/11 12:57 PM|
I just followed advice of others--went to Windows updates and selected it. Several updates installed and then the computer restarted. When I opened Chrome and Gmail, the address bar in Gmail was back to normal green and I didn't have to change the date to yesterday for it to be fixed. Thanks for your info.
|Re: https in red, crossed out||colleenharris1979||1/12/11 1:00 PM|
Ditto on the updates fixing the problem. I had the issue this morning, and when I shut down the computer before lunch it installed 3 udates (same listed here) and now no issues.
|Re: https in red, crossed out||agl||1/12/11 1:04 PM|
To follow up on my previous request: if you are including the text dump of chrome://net-internals, please open a tab to chrome://net-internals upon starting Chrome. It will log more detail if the tab is open.
|Re: https in red, crossed out||CJBrew||1/12/11 1:04 PM|
I just ran a Spybot check, found 6 tracking cookies: DoubleClick, MediaPlex and Tradedoubler. They were all on Chrome.
This may have nothing to do with the problem but now Gmail is back to a green "https"
|Re: https in red, crossed out||agl||1/12/11 1:15 PM|
Additionally: has anyone experienced this issue *without* Microsoft Security Essentials installed?
Also, is anyone *still* experiencing this issue? It seems to have magically cleared up for many people.
|Re: https in red, crossed out||golfwins||1/12/11 1:17 PM|
Yes, I had the issue and did not have MSE installed. I updated my Vista and 7 box and all is now good. I'm trying to find the root cause but not having much luck at the moment.
|Re: https in red, crossed out||Lelaa||1/12/11 1:33 PM|
It makes me feel uneasy - the problem somehow disappeared for no obvious reason or intervention
|Re: https in red, crossed out||djmcnz||1/12/11 1:37 PM|
- Yes, my "fix" above has stuck
- I have still *not* installed KB2419640, KB976902, KB890830, KB2447568, KB2454826 or KB982110 from MS.
- I *am* running MS Security Essentials which auto-updated 11-JAN & 12-JAN, I have not received an update since my "fix"
So, it seems from recent posts there's no consistent environment/solution.
|Re: https in red, crossed out||djmcnz||1/12/11 1:40 PM|
When did it disappear for you can you recall? Around 90/120 mins hours ago (from the time of this post) or just now?
Mine "fixed" about 130 mins ago... though it was something I did but are others "auto-fixing"?
|Re: https in red, crossed out||golfwins||1/12/11 1:46 PM|
I manually updated my Vista and 7 machines to resolve the issue.
@djmcnz can you tell me what update MSE ran today and yesterday?
|Re: https in red, crossed out||djmcnz||1/12/11 1:47 PM|
MS Security Essentials, auto-update:
v1.95.3683.0 11-JAN-2011 11:33AM
v1.95.3768.0 12-JAN-2011 11:37AM
It's currently 12-JAN-2011 22:42 where I am now.
|Re: https in red, crossed out||Sentrax||1/12/11 1:57 PM|
The fix(whatever it was at this point now) worked about 100 mins ago. Very coincidental, and unsettling.
|Re: https in red, crossed out||golfwins||1/12/11 2:01 PM|
Sentrax, do you have MSE installed? Do you know if it happened to update 100 Mins ago? Or, do you know if your system ran updates around that time? I'm wondering if the MSE update or Defender update had anything to do with it.
|Re: https in red, crossed out||Sentrax||1/12/11 2:08 PM|
I manually updated at the time. That is why assumed that was the fix. I do not have MSE. I use avast!. Is MSE better?
|Re: https in red, crossed out||Lelaa||1/12/11 2:13 PM|
djmcnz: can't exactly pinpoint the moment, because I had chrome running (with red padlock), but I fired up another instance around 20 minutes ago and it was all green. Two hours ago it was all red, so the 100-120 minute time frame seems right. Really weird.
|Re: https in red, crossed out||Lelaa||1/12/11 2:13 PM|
Oh, and I dont have MSE
|Re: https in red, crossed out||golfwins||1/12/11 2:15 PM|
Maybe AGL will post a root cause, i can't spend anymore time on it.
I use different one's on different machines, and I think they are pretty comparible. I mainly use AVG and Avast. I've had good luck with MSE as well.
|Re: https in red, crossed out||agl||1/12/11 3:35 PM|
Thanks to all who helped track this down.
I believe that we've pinpointed the issue and it's a) now fixed (although you may need to restart Chrome) and b) not the fault of any of Microsoft's updates.
Chrome was warning about a real issue (and I need to investigate why other browsers didn't warning) but it was treating what should have been a minor warning as something more serious. Chrome will be fixed to better report the source of the error in future.
|Re: https in red, crossed out||Sentrax||1/12/11 4:30 PM|
Thanks agl. Still love chrome!
|Re: https in red, crossed out||Dan10||1/12/11 8:55 PM|
I had the crossed in red; did all the checks (learned a lot), did change the date back and up with Chrome closed, no more red...BUT this was about the time agl was saying he had a fix, so who knows. Great discussion, lots of help, thanks all!
|Re: https in red, crossed out||JRod58||1/16/11 11:48 AM|
|Re: https in red, crossed out||oldmisstreacle||1/17/11 8:42 AM|
Sorry folks, mine is still doing it. I have even reinstalled Google Chrome! No problem with Firefox. I do not want to have to go back to Firefox - any ideas that a normal person can attempt? (i.e. not too deeply technical!)
|Re: https in red, crossed out||GPN1||1/17/11 10:27 PM|
Sorry but am still experiencing exactly this problem with Chrome Chrome 8.0.552.237, even after restarting.
This is very annoying because it happens on our website when using Chrome which means our users are getting a bad impression of us. In short, we have a page on our website that is using https:// purely (I checked with the resources tool). But Chrome shows the "crossed out https:" icon in the address bar.
|Re: https in red, crossed out||agl||1/18/11 11:17 AM|
GPN1: So far, Chrome's detection of mixed-scripting issues has always been found to be correct. Although the possibility of a bug remains, it's likely that you do, indeed, have mixed-scripting issues.
However, the reporting of these issues isn't always great. I hope to have logging in the debug log soon but, in the mean time, if you're having issues please include a URL where the problem can be reproduced.
|Re: https in red, crossed out||Peter Falk - Localwinner.de||1/20/11 1:40 AM|
|Re: https in red, crossed out||agl||1/20/11 3:03 AM|
|Re: https in red, crossed out||slugdub||1/22/11 1:57 AM|
Here I am, still having this problem and yet on gmail on google chrome and the twenty frickin second of Janus 2011. fix plz
|Re: https in red, crossed out||shervin_m||1/23/11 1:08 PM|
I'm having the same problem. Red crosses on all https pages in chrome 8.0.552.237 on OSX 10.6.6.
Errors appearing on mail.google.com.
Details : clicking on the red lock shows that the connection is green at 128 bit. However, the message is "The identity of this website has not been verified". The security certificates for Google and Thawte SGC CA are both not trusted.
Any thoughts? I don't get this error on firefox. Is this a bug or am I really on insecure sites? Any way I can fix this. It's very annoying...
|Re: https in red, crossed out||khris210||1/23/11 1:09 PM|
I'm afraid I had these problems with Chrome IE and Armorsurf. I haven't tried with FF since that always used to crash. I have tried all the Financial sites I deal with but I have only had the fault on one site (so far) that is the www.postoffice.co.ok, BUT only on a "sub" url www.pofssavecredit.co.uk which is the sign-in page for savings. The error on the Java console says " gear/content/html/content/ctf/campaigns/po/sign-in2/css/quotefinder_print.css Failed to load resource: the server responded with a status of 404 (Not Found)" I have no idea what this means. My dates are right, I don't have MSE. I am running WXP SP3. It goes across 3 different browsers for me, but when I phoned my ISP (Plusnet) they tried FF at their end and it was green. I can't make head or tail of this, nor apparently can anyone else! (PS The certificate issuer is QuoVadis who clain to issue them for the Government Gateway site)
|Re: https in red, crossed out||dirkf||1/24/11 1:14 PM|
We are also suffering the dreaded RED SLASH in the https:// and find that it's Chrome specific. Very annoying and not making much sense to us. We're not heavyweights and we don't want to be. We have work to do and would prefer not meandering around the caverns of Chrome and the internet. Can you provide an answer that makes sense to the average user and provides meaningful solutions (short of abandoning Chrome?) Thanks.
|Re: https in red, crossed out||agl||1/24/11 1:17 PM|
If you have issues with some site, please post the URL. Otherwise we can't do anything about it.
|Re: https in red, crossed out||steve0123||1/25/11 12:45 PM|
using latest & greatest .237 chrome on ia-32 opensuse11.2+latest patches.
www.sony-europe.com/myproducts --> select language # takes me to red https page
java console has:
/bravia/script/sound.jsFailed to load resource: the server responded with a status of 404 (Not Found)
The page at https://www.sony.co.uk/mysony/RegisterProduct.action?site=odw_en_GB ran insecure content from http://survey.euro.confirmit.com/isa/HMCYGPGAHXJXBHABPDEBCDDRJDMAGPBF/2703_Sony/2703_Interval_1.js.
the 404 is the red critical error <-- how "not found" is critical is anybody's guess
the "insecure content" is a yellow warning
close inspection of FF 3.6.13 shows this same URL site is red error, the details confirming that part of the content was/is insecure
how this assists your bugtrack
|Re: https in red, crossed out||Lightpen||1/25/11 5:47 PM|
Thank you for the fix. I got this problem yesterday too where the https shows a red line when I entered my CC info. I read this post just today, Updated chrome, and it's working fine now.
|Re: https in red, crossed out||CaptainKai01869||1/31/11 5:49 AM|
This issue has now come back, the https is red and crossed out, on everything in Google Chrome that deals with information, like Google Account, deviantART and the Qualys Browser Check! It's worrying when this happens...I'm not 100% sure about Internet Explorer either as it looks safe, but our other computer seemed more secure...which really doesn't make sense when both are Windows 7, 64-bit, one's just a laptop.
Everything is up to date so it is worrying that issues are getting through, I hope this will be sorted soon.
|Re: https in red, crossed out||CaptainKai01869||1/31/11 7:03 AM|
I discovered, thanks to another user, that the extension FastestChrome caused it this time and I've disabled it, so now all good again. It is a cool extension though so I hope the problem will be fixed soon.
|Re: https in red, crossed out||tarachan||1/31/11 7:18 AM|
Thank you, Captain Kai! I was going crazy over here wondering what "broke", and since I've disabled FastestChrome, my HTTPS is no longer red!
|Re: https in red, crossed out||bluebert77||1/31/11 7:29 AM|
Captain Kai's solution worked for me. I disabled fastest chrome. Now the redline is gone. Thanks!
|Re: https in red, crossed out||CaptainKai01869||1/31/11 7:32 AM|
No problem ^^ I owe it all to the user called Tomerg6 :) it was them who told me about FastestChrome having issues. There is a way to keep the extension if you really like it. If you go on its Options and un-check the Search Results section it should also keep the problem away :)
|Re: https in red, crossed out||Jarpee||1/31/11 4:49 PM|
Thanks ALOT Captain!!!!!
|Re: https in red, crossed out||cruizm14||2/1/11 12:03 AM|
Yep fastestchrome was the problem.. thanks captain!
|Re: https in red, crossed out||CaptainKai01869||2/1/11 4:19 AM|
No problem ^^ I'm glad it's helped you as well :)
|Re: https in red, crossed out||Androidep||2/1/11 5:41 AM|
I had this problem when accessing Gmail. It was the extension "FasterChrome" that was causing the issue, when I disabled it, I got the green https. Check your extensions and disable the ones that weren't made by Google.
|Re: https in red, crossed out||n4te04||2/5/11 9:52 AM|
THANK YOU FOR YOUR SOLUTION.
Problem: Crossed out https across all browsers for sites that had certified certificates.
Solution: Set date and time to the correct day and year.
I was experiencing the crossed out https on every single browser. The problem was that my date and time was incorrect on my computer, once I corrected the date and time, my browser did not experience any more crossed out https issues. Thank the lord.
|Re: https in red, crossed out||manuk||2/6/11 12:52 PM|
@agl Toni (Googler) (Google Employee):
Nope this isn't resolved yet, did restart of browser, cleared cache etc.
Funny thing is that error is coming for Google's own websites also.
|Re: https in red, crossed out||Coolfujton||2/8/11 11:32 AM|
I too am getting the red HTTPS, however, I am getting it following an apparent redirect within a site. Here is the scenario... 1. Log in to a commerce site and get the green HTTPS. 2. Go to my shopping cart. 3. Go to last page before checkout. 4. Cancel the checkout (which redirects back to site root using HTTP) 5. Since I am still logged in, I go back to my shopping cart and click checkout. 6. When site changes back to HTTPS, it is red and crossed out. The details say that my connection is encrypted but the page contains other resources which are not secure. Doing this same procedure with IE and Firefox does not yield an error. Any ideas why Chrome treats this differently
|Re: https in red, crossed out||agl||2/9/11 6:58 AM|
Coolfujton: Chrome tracks mixed scripting more precisely than Firefox or IE which is why you see the error in Chrome but not in the others. Please include URLs in any reports otherwise there's little that I can do.
|Re: https in red, crossed out||Coolfujton||2/9/11 9:55 AM|
I would rather not post the URL on the open forum. If you have an email I can forward to, I will send the URL with additional details.
|Re: https in red, crossed out||agl||2/9/11 10:05 AM|
|Re: https in red, crossed out||Coolfujton||2/9/11 11:22 AM|
|Re: https in red, crossed out||bryanvp||2/11/11 5:50 AM|
agl: you want an example site, just go to https://www.chase.com and you will see this issue. I'd be happy to send you a screen shot also if you like. I would think Crome would be able to verify the security of a small mom and pop bank site like Chase, no?
|Re: https in red, crossed out||bryanvp||2/11/11 5:54 AM|
I really doubt Chase.com's home page "includes other resources that are not secure". Chase? Don't think so.
|Re: https in red, crossed out||agl||2/11/11 6:25 AM|
|Re: https in red, crossed out||spouses||2/11/11 2:09 PM|
I have been watching this post for about 1 year hoping to find the FIX.
That darn RED X comes up in most all my surfing including Google's pages.
Can someone post a REAL FIX,please.
|Re: https in red, crossed out||spouses||2/11/11 2:11 PM|
|Re: https in red, crossed out||agl||2/11/11 2:32 PM|
spouses: it's probably an extension which is injecting insecure links into pages (although Google Reader is known to cause problems for https://www.google.com). Grab a canary build (http://tools.google.com/dlpage/chromesxs) and it will install concurrently with a normal Chrome build. It will be a fresh configuration, with no extensions, so will probably be fine.
|Re: https in red, crossed out||ryanl84||2/27/11 12:44 PM|
was racking my brain trying to solve this one... opened up incognito mode (i.e. without extensions/apps) and https is green and works properly... must be one of these annoying things... but which one? guess I'll have to do some testing.
|Re: https in red, crossed out||Hardikyadav||3/15/11 4:06 AM|
|Re: https in red, crossed out||Hardikyadav||3/15/11 4:07 AM|
i am facing the problem of after login from google.co.in and click uper left side gmail. http:// red crossed. when it will fix i tried to clear history and restart chrome browser but nothing is working.
|Re: https in red, crossed out||dcoder||3/18/11 4:32 PM|
I had this problem with my gmail too. I found when I uninstalled my extension for Galaxy for Chrome OS my lock turned green again indicating I had a secure connection. Not sure why, but it was the culprit. I kept uninstalling my extensions and restarting chrome. When I uninstalled that one, my red lock turned back to green again.
|Re: https in red, crossed out||Hardikyadav||3/19/11 9:49 AM|
|Re: https in red, crossed out||dylanforegger||3/30/11 12:06 PM|
You can find the explanation of what the "https in red and crossed out" here: http://www.google.com/support/chrome/bin/answer.py?answer=95617&hl=en-US
Also, if you click the padlock icon it'll tell what it means.
|Re: https in red, crossed out||gnuyoga||4/4/11 11:08 PM|
|Re: https in red, crossed out||Prince Nova||4/10/11 6:52 AM|
|Re: https in red, crossed out||jemsw||4/17/11 5:11 PM|
I had been to the web site earlier today and neither the lock icon or "https" was not in red and crossed out. This is why I miss my Norton 360. No mystery there.
Again thanks. I would have wasted a lot of time trying to figure what the problem was. Seems to have been occurring for some time now.
|Re: https in red, crossed out||Vandal||4/22/11 8:27 PM|
Got news agl/Toni this is NOT freaking fixed. I'm getting the same bloody problem with the crossed out https. This was after spending an HOUR trying to get an extension working that was working fine until Chrome messed it up.
(An extension that should have been a default option since Chrome was first implemented)
Nice job fixing the problem. I'm switching back to Firefox, I've had it. Google is getting more like bloody Microsoft every passing day.
|Re: https in red, crossed out||ddizzle26||4/23/11 12:13 PM|
Today I went to the yahoo page and clicked mail, and I have the red X & cross through the "http". When I press ctrl+shift+i it has "The page at https://login.yahoo.com/config/login_verify2?.intl=us&.src=ym ran insecure content from http://tb.adurr.com/include.js." under the warnings. Not under errors. Sooo.... Any solutions??
|Re: https in red, crossed out||Stuart M||4/29/11 4:43 AM|
This red crossed https unsecure encryption still occours with the latest chrome update 11.0.696.60
(Background Note: Occours on google account login, gmail login etcetera, running XP system latest updates, it does not occour using IE. also Safe Chrome extension says analytics a problem)
A SOLUTION and THE QUESTIONS:
I have found that if you use Incognitio Mode the problem goes away.
Is this because Chrome does not report the bad SSL encryption in Incognito mode
Or does Icognito mode block the unsecure SSL communications.
In other words can I trust that Chrome is now safe to do my emails, banking, etcetera in
And when will google fix the problem in non incognito mode
Heres hoping they do because IE is soooo slow, I am getting sick of using it already
|Re: https in red, crossed out||agl||4/29/11 7:23 AM|
Stuart M: The underlying cause is that Chrome tracks mixed scripting better than any of the other browsers. The unfortunate result of this is that people assume that Chrome is getting it wrong when Firefox and IE disagree.
The extra bookkeeping that Chrome does is that it understands that mixed scripting can jump between pages in the same origin. The reason that Incognitio mode appears to solve the problem for you is that Incognitio pages are isolated and can't have been poisoned by mixed script from non-Incognitio pages.
I added tracking for this earlier in the year and it should have made it into Chrome 11. Close all Chrome windows and enable debug logging by following the instructions in . Then use Chrome normally and wait until you're seeing the red, crossed "https". Then find the debug.log file and look for lines that include "run insecure content from".
Given that information I'll be able to pin down the problem. (Feel free to email me if you don't want to post that information publically. Put @chromium.org on the end of my username.)
|Re: https in red, crossed out||Stuart M||4/30/11 1:09 AM|
Ohhh Thanks AGL
debug mode pointed to the one extension I never thought to stop, McAfee Antivirus Site Advisor
Hmm I like that extension can we get Chrome to recognize that one as safe or is it too generic and too big a hole to allow
"The page at https://www.google.com/accounts/ServiceLogin?passive=1209600&continue=https%3A%2F%2Fwww.google.com%2Faccounts%2Fmanageaccount&followup=https%3A%2F%2Fwww.google.com%2Faccounts%2Fmanageaccount ran insecure content from sacore:common.js.
," source: (1)
|Re: https in red, crossed out||agl||5/2/11 11:00 AM|
We've contacted McAfee about this problem and they're looking into it.
|Re: https in red, crossed out||Stuart M||5/3/11 7:11 PM|
tell mcafee that site advisor v188.8.131.52 okay but v184.108.40.206 has problems it may help them, (chrome versions the same, both xp systems)
|Re: https in red, crossed out||MadMike005||5/7/11 6:22 PM|
I found the problem for the red cross appears on an HTTPS web site.
I am running the most up to date chrome 11.
It was the facebook and skype extensions that I had loaded .
I deleted them and that fix the problem.
Maybe other extensions for u all too.
I right click (maybe it was left click) the little icon by the wench icon then check extension to be deleted
All fine now.
Hope this works for u
|Re: https in red, crossed out||droidphreak||5/19/11 8:51 AM|
I'm running Chrome version 11.0.696.68 which at the time of this posting is the current version. Just recently I've seen all the https sites have the red line through them. IE8 and FFX work fine on https sites. What else can be done to fix this?
|Re: https in red, crossed out||droidphreak||5/20/11 12:27 PM|
For those who are still having an issue with a red x and red line appearing on https pages run a search on your computer for .crx files and if you find any disable them and then restart the Google Chrome browser and see if it fixes it.
|Re: https in red, crossed out||stockli||5/24/11 8:53 AM|
So I'm running into this on a client website, and Chrome is doing absolutely nothing to help me troubleshoot it. All SSL protected pages on their site are borking with the SSL warning, and the console doesn't have anything to say about it. I tested it on their home page (which does contain http:// resources) and the console correctly reported those SSL errors. However, when I proceeded to their cart/checkout system which is totally clean as far as I can tell, the warning is still there, with no messages in the console to help me find the problem.
Google, if you want to REALLY help users, help web devs troubleshoot this stuff. Making users run away due to an unfixable problem is super lame.
|Re: https in red, crossed out||goeco||5/25/11 3:00 AM|
From googling i found some possible causes plus one of my own.
1) You opened a html email linking to unsecure http content (usually images)
2) Your OS has the wrong date/time
3) Chrome extensions / plugins can cause this.
4) Labs features in gmail can also cause it.
If you suspect it's nr #1 you cannot just reload gmail as I've seen stated, you have to close the gmail tab and manually open a new one for the cross to dissapear!
|Re: https in red, crossed out||annonymous1234567890||6/4/11 9:28 AM|
https had a red X on a site that I am sure it's safe.
|Re: https in red, crossed out||x3lumin8x||6/8/11 11:58 AM|
I did have the red X and the red slash on https. I also had a Google theme loaded. I went into the setting and I reset the theme to default. I restarted Chrome and signed back in. The https is now green :)
|Re: https in red, crossed out||Dynamo2000||6/14/11 9:18 AM|
Hi Everybody, I am writing this response to hopefully help some of you out there who are struggling with “https in red, crossed out” problem. Like most of you I was “minding my own business” surfing the web when the “devil in red struck”. No matter how hard or which way I tried, whenever I typed gmail.com in the address bar or any other way of trying to access my email, “I saw red!” I read countless website discussions including this one on Google Chrome (and needless to say wasted countless hours in the process) all to no avail. Finally through perseverance and luck I solved my problem and hopefully this will help at least some of you.
The first very useful piece of information I got was from agl (9/24/10) above on this web site. As he suggested: Open a new tab, press Ctrl+Shift+I, select 'Console' and then enter 'https://mail.google.com ' (or whatever address is leading you to the red https) in the address bar of the new tab. Go back to Console and it should tell you which resources are triggering the problem.
What you do next depends heavily on what the error message is. In my case I was getting two nearly identical long messages (mostly gibberish) but they both ended similarly like: “… trying to run insecure content from http://www.clickcoupon.me/plugin/sources”. This lead to a long “wild goose chase” relating to clickcoupon.me or “running insecure content” which basically got me nowhere. I was basically giving up on Chrome and looking into IE. And this is where the luck comes in. When I tried using IE it told me my cookie functionality was turned off and I should turn it on. I decided at some point to look at my cookie settings in Google Chrome . To look at your cookie settings in Chrome you click on the wrench in the upper right hand corner, and then from the drop down menu select Options, etc. For whatever reason at some point mainly from curiosity I clicked on Tools instead of Options. This leads to another drop down list. On this second list is an entry Extensions. Again it was luck and curiosity that led me to click on Extensions. Wala! Eureka! In a second or two, I was staring a very short list of extensions to my Google Chrome. One of the items in the list was yours truly:
clickcoupon.me. Well, you don’t need to be a rocket scientist to figure out what to do next – I uninstalled it (there is a button with this option) and is so doing “slew the red devil!” End of (true) Story. In any case I hope this helps at least some of you. Take care
|Re: https in red, crossed out||Marina K.||6/25/11 1:47 PM|
I have the same problem. And this red crossing out http occurs on my bank web site. I would not like to believe, that the bank is a sort of a scamer. What is it then?
|Re: https in red, crossed out||elfling||7/15/11 11:24 AM|
I found out that my problem was because I was using OpenDNS server. So I switched to the Google DNS server and it now shows all https as secure.
The big question is. What makes Google's DNS more secure then OpenDNS apart from being biased.
|Re: https in red, crossed out||ACRRM||7/21/11 7:09 PM|
We have been having this issue sporadically on our website also, it is very strange as it only appears sometimes on the same pages (almost as if it has trouble connecting to the Certification Authority and throws up this error) would be great to have a solution as this causes undue panic to users
|Re: https in red, crossed out||harinder singh||8/21/11 11:20 PM|
i got the same red crossed https on my facebook account but when i uninstall ChatVibes Facebook Video Chat! by right click on it and then restarting my crome my link comes in green....
if u guys also install something new 2 facebook then jus uninstall that and hope ur account also work properly......
|Re: https in red, crossed out||lahma69||8/29/11 4:49 PM|
I have had this problem consistently (past year or so) when using Google Chrome, and it happens on THE MOST reputable sites I can think of... including Amazon, GOOGLE, Ebay, etc. It is a bit scary, and what is concerning, like mentioned many times in this thread, Firefox and IE do not list these sites as insecure during the same browsing session. Can someone from GOOGLE please let me know what is going on? Is using Chrome when it crosses out HTTPS any less secure than using Firefox if I immediately resume my chrome session in firefox and it shows SECURE? Please shed some light on this issue for me. I am a PC Tech of 13+ years, so please tell me technically what is going on because I LOVE CHROME and I have given up using many extensions that other browsers support just so I can continue using it.
|Re: https in red, crossed out||Valberg22||9/10/11 1:05 AM|
After a lot of time spent researching this issue I solved the problem. I figured out that red line is there because of the adds that facebook and other sites have.
You just need to install "ADD BLOCK" extension and you will be again on "green https" ( secure connection). Because through those adds
(as some privacy statement says) "your information can be viewed by third parties" and because parts of the pages cannot be encrypted.
So thats it !
P.S. Off course some sites are without proper certificate so "add block" will not help.
|Re: https in red, crossed out||design22||10/1/11 6:53 PM|
I have a google apps website and every time I sign into my google sites home page this is the message I receive. I use Google Chrome as my website browser. I have had no luck with anyone from Google or a help forum on a fix for this message. If anyone has suggestions on how to fix this I would greatly appreciate your feedback.
The site uses SSL, but Google Chrome has detected either high-risk insecure content on the page or problems with the site’s certificate. Don’t enter sensitive information on this page. Invalid certificate or other serious https issues could indicate that someone is attempting to tamper with your connection to the site.
|Re: https in red, crossed out||ohitisme||10/5/11 8:46 AM|
Fixed I uninstalled all chrome extensions to get this ... Boo... No extensions installed :-( restarted chrome and FIXED!!!!
|Re: https in red, crossed out||alan1968||10/7/11 9:17 AM|
The fix whenever it was did not work. Every time I open gmail i get a yellow bar saying I have insecure content. When I click the link to learn more it gives a line of code to add to the target line. However, this is not acceptable to the system. So there's no way to turn this off. It all only began with me about a week ago. Never had any problem with gmail before (apart from the messy layout)
|Re: https in red, crossed out||Ricochet.Rocket||10/13/11 5:07 PM|
I agree with Dynamo2000 and going through my extensions I began disabling (not uninstalling) until I came to Galaxy Chrome OS which when disabled stopped giving me the warning about insecure java scripting and gave me a secure (green) httpS. Now what I think Google needs to address is that its all well and good that we are warned and given a choice to "load anyway" (button) or "don't load" the insecure data, but when I pick a choice I want my choice to REMAIN picked for that website. not constantly and incessantly popup and warn me..............every....................single...............TIME. When I click a choice I want my choice to be remembered!
Come on google, can't a simple persistent cookie do this? For instance if I WANT to use the Galaxy Chrome OS in Chrome instead of disabling it, I don't want to see that damn warning all the time. I want to permanently allow the insecure content for the Galaxy Chrome OS.
Seriously? come on folks.
|Re: https in red, crossed out||sanjay_south||11/8/11 1:27 AM|
I am new for this SSL when i active SSL its gives me some error on chrome browser so can you please guide me for same
your connection to sitename.com is encrypted with 256-bit encryption However,this page includes other resources which are not secure.These resources can be viewerd by others while in transit ,and can be modified by an attacker to change the behaviour of the page
The connection uses TLS 1.0
the connection is encrypted using AES_256_CBC, with SHA1 for message authentication and DHE_RSA as the key exchange mechanism
The connection is not compressed
|Re: https in red, crossed out||Sie_Deen||11/28/11 3:38 PM|
As agl@ explained, if you are still seeing the red crossed "https" indicator (see Ref), it's because Chrome has identified that the site contains mixed scripting. To identify what may be causing the mixed script, please follow agl's steps:
1. Close all Chrome windows (wrench icon -> Exit)
2. Enable debug logging by following instructions in Ref
3. Open Chrome and browse normally until you're seeing the red, crossed "https"
4. Find the chrome_debug.log file in your user data directory (http://dev.chromium.org/user-experience/user-data-directory) and look for lines that include "run insecure content from"
What did you find in step 4?
If it is pointing to an extension that you have installed, try disabling the extension.
If you're not sure, please post what you found as well as the website that you are visiting with the red crossed "https" indicator so that we can look into it.
|Re: https in red, crossed out||madisondr||12/8/11 11:06 AM|
I am very frustrated. I have read many of the forum postings on the topic of a crossed out and red HTTPS. Unfortunatley I am not techniocally oriented and so I do not understand the debugging reference or how to carry it out.
Lat night I ordered checks through the samsclubchecks.com. After I completed the transaction I noticed the red and crossed out https and now I am freeking out that my bank accounts and credit card may be at risk and am concerned that I might neet to cancel these accounts. This problem does not happen on other purchases made on the Sams club site in google chrome and does not happen with FF or IE. I called Sam's club and they said the site is secure and the issue is with the google browser and therefore I should contact google. However, since there is no way to contact google I am hoping someone ( hopefully from google) can answer one question - given the information in this posting( including that below) are my checking and credit card accounts at such significant risk that I should give serious thought to canceling them?
The information on the red https says:
1. Site Identity - the website has been verified by versign class 3 secure server CA-class3
2. Site connection to samsclubchecks.com - is encrypted with 128 encryption However,this page includes other resources which are not secure.These resources can be viewerd by others while in transit ,and can be modified by an attacker to change the behaviour of the page
The connection is encrypred with RCA128 with SHA1RCA, with SHA1 for message authentication and RCA as the key exchange mechanism encryption
The server does not support TLS renegotiation extension
|Re: https in red, crossed out||agl chromium||12/8/11 11:14 AM|
madisondr: Don't panic, although samsclubchecks.com is badly built, it's not really any more risky than reading a credit card number out over the phone.
Having said that, it takes all of about 15 seconds to find a problem with their site:
The page at https://www.samsclubchecks.com/checkout.aspx ran insecure content from http://www.samsclub.com/sams/sslLogout.jsp?ssl=true&redirectURL=/sams/common/samsHeaderFooter1.jsp.
So, although your credit card *could* have been intercepted, it probably wasn't.
|Re: https in red, crossed out||orybrowne||1/12/12 5:17 AM|
This seems to be a major problem. And I think many of the above responses are addressing issues that are standard and what the system was built for. However, from what I am experiencing and from what I am reading from other's experiences this is more of a "bug" (I don't know if this is the proper name, but for lack of a better word). This bug is affecting google docs, gmail, my banks and many others site. I have deleted/reinstalled chrome and still nothing. If the problem is not resolved. I will have to use another browser. Someone from chrome needs to recognize this is more of a global problem and perhaps more people are ignoring it because they don't know what to do. Chop Chop Chrome! Get on this.
|Re: https in red, crossed out||agl chromium||1/12/12 6:22 AM|
orybrowne: sorry to hear that you're having issues. We've found that this is nearly always caused by other software on the computer trying to manipulate the browsing experience (i.e. anti-virus). In a couple of cases where it's been caused by a common, 3rd-party program we've managed to contact the vendor behind it and get it fixed, but there are more programs out there than we can deal with because pinning the problem down in each case is very technical and often impossible to do without being at the computer itself.
I'm willing to give it a shot if you would like, although it may well end up inconclusive. You can email me by putting @chromium.org on the end of my username.
|Re: https in red, crossed out||glua||1/23/12 3:22 PM|
I don't think the problem is fixed. I did discover what seems to fix the problem for discoverbank.com anyway. If I perform a search for discover bank and then click on the link from the search it seems to return to green without the error. The https is missing from the signon screen. Once I sign on the green https: appears again. I don't know if this means that my sign on is not secure.
This problem doesn't seem to exist in IE.
|Re: https in red, crossed out||CheyenneJock||2/2/12 12:48 PM|
We run an e-commerce business, and our average user would not want to put their information on a insecure/seemingly insecure site. This could affect our business greatly. Can we expect this issue to fixed quickly within Google? I've seen the instructions on how to fix my computer, but what about our customers?
|Re: https in red, crossed out||agl chromium||2/2/12 2:57 PM|
CheyenneJock: it's almost certainly an issue with your site. I'm happy to try and track it down if you're stuck, but I'd need the URL / steps to reproduce the problem. If that's sensitive information, you can email me at my username @chromium.org
|Re: https in red, crossed out||misulicus||2/15/12 11:13 AM|
i got same issue on a new website
just purchased an ssl for it but chrome shows it in red
|Re: https in red, crossed out||agl chromium||2/15/12 12:37 PM|
misulicus: it will be a problem with the site but, if you can point me at the site in question, I can take a look for you. (If it's private, you can email me at <the first word of my username> @ chromium.org
|Re: https in red, crossed out||tadstudios||2/17/12 4:37 PM|
I have the same problem and I found the source of the issue. It is Google Analytics code causing the problem. I am using the suggested code at:
After I removed the code, the issue disappeared. I want to use GA, but it is obviously problematic. Are others experiencing the same issue with GA code and the https slash through in the address bar in Google Chrome?
|Re: https in red, crossed out||agl chromium||2/21/12 7:46 AM|
tadstudios: Analytics shouldn't have a problem with HTTPS and many HTTPS sites use it successfully. Can you point me at an example URL where it's causing problems?
|Re: https in red, crossed out||bmdonohoo||2/25/12 7:09 AM|
|Re: https in red, crossed out||agl chromium||2/26/12 1:00 PM|
bmdonohoo: I can't find a way to get to an HTTPS page from your HTTP page but, taking a guess and just trying https://www.anniesfutons.com I'd say it was the insecure load of jQuery and TypeKit.
You want to remove the "http:" from that so that it looks like:
(That's a scheme-relative URL which works for HTTP and HTTPS, but will misbehave if you prototype the page on the local disk, where the scheme is file://)
|Re: https in red, crossed out||jcleftie||4/29/12 12:27 PM|
Since Chrome does not use it's own settings and uses that of IE, by doing a full reset (including personal data) of internet explorer resolves the problem. Since this full reset clears all personal data and disables extensions in IE, it likely does the same thing to Chrome when ran.
This points to an exploit within Chrome, installed extensions or code causing this problem and not the site being visited. I've been able to validate this as an accurate fix of the problem but have not been able to pinpoint anything more specific to the cause. I can also validate that different extensions cause this problem, it's not specific to one company or developer.
Finally, I can validate that Google and the Chrome team have not yet fixed this problem.
|Re: https in red, crossed out||kpoll||5/11/12 12:30 PM|
Yesterday my computer fell victim to mystart.incredibar redirection virus. I tried many things to get rid of this virus (it was not detected by my anti-virus software) included a reset of Internet Explorer. I have been using Chrome solely for the past several months but this virus seemed to attach to IE; Chrome did not appear to be affected. Nonetheless, after the IE reset, I tried web browsing with Chrome only to find every single web page visited with the red slash through the https. I found this forum through a search for how to fix the red slash problem. Thought my experience/issue may be related to the previous poster's findings (jcleftie on 4/19.) Anyway, there are a lot of "solutions" listed here going back almost 3 years...any updates on this matter? And how can I fix this problem now??
|Re: https in red, crossed out||AngryMerchantsUnited||5/22/12 5:11 AM|
Incorrect! The red crossed-out appears on VALID SSL certs. Many good sites are being dised by Google because their product Chrome "works too good" (as propaganda-ized in "best answer.).
Two bogus reasons for it that we have seen are simply: 1. images on page (which are not secure but is not a security issue) and 2. Google didn't list the the SSL company or cert type in its database.
Chrome is simply WRONG much more often than it is right (false positives). Very bad for business when people like d-ray believe agl and decide to mistrust sites just because Chrome puts a red line on a site's https, since it is usually wrong.
|Re: https in red, crossed out||Neeo||6/16/12 8:55 AM|
Yeah I cant believe almost all websites with https secure network shows a cross mark.. that applies to gmail and facebook as well... what am I missing out??
|Re: https in red, crossed out||Kay Holley||7/12/13 7:43 AM|
My chrome websites are showing the red cross stating the sites are insecure. I am not sure how to re start Chrome. Can you advise please. I assume you don't mean just switching the internet off and starting again!!!
|Re: https in red, crossed out||connor elliott||7/17/13 2:53 PM|
HELP!!! i have old facebook where its just wrting anf my bar at the top says https in red what does that mean please someone help!
|Re: https in red, crossed out||mudwoman||7/18/13 1:40 PM|
Do you have the latest version of Chrome? Go to chrome://help/ and see if it says that you are up to date. Current version is 28.0.1500.72 m.
|Re: https in red, crossed out||Bongpal Kim||7/20/13 2:10 AM|
The problem for me was the clock and date were changed. I changed it to the correct time and it worked great. Thank you for the help.
|Re: https in red, crossed out||warleroux||9/23/13 5:07 PM|
i had this happen in sept 2013. i uninstalled chrome, then reinstalled and it went away.
|Re: https in red, crossed out||Brenda Petty||10/11/13 1:35 AM|
You are brilliant. I did what you said and it worked. The red cross is gone! Thank you so much.
|Re: https in red, crossed out||Inphoenix Arizona||10/26/13 4:08 PM|
didn't work for me
|Re: https in red, crossed out||Inphoenix Arizona||10/26/13 4:54 PM|
none of the above worked for me. I had to delete quite a few add-ons (extenstions) in Chrome and uninstall ScorpionSaver in windwos. Re-booted and all seems to be ok now.
|Re: https in red, crossed out||Joshd||1/22/09 8:29 AM|
You're browsing with an invalid SSL certificate. That means the data you send and receive is being encrypted, but Chrome can't be sure the other party is who they say they are.
When you first come across a site / certificate with this problem Chrome will ask you if you want to continue. You have chosen to continue and ignored the warning. You should not complete any sensitive transaction in this manner. I'd recommend checking that the address of the site is correct, and then contacting your credit card company.
You may also want to check your computer's time and date is set correctly. If it isn't Google will assume that the certificate has expired.
|Re: https in red, crossed out||rachelrounds||3/4/09 3:58 AM|
My date and time aren't wrong. I am having this problem with google websites, such as google analytics and account settings. Is there any way to fix this? The sites do not work properly.
|Re: https in red, crossed out||agl||3/4/09 8:19 AM|
To reiterate what Joshd said: you shouldn't conduct any sensitive business (including entering any passwords etc) when you see the red "https" with the strikeout.
Can you give your Chrome version (type about:version in the address bar)? Also, if you have other browsers installed on the same computer (Firefox, IE etc) can you try the same sites in those and see if they also have certificate problems?
|Re: https in red, crossed out||d-ray||3/17/09 9:16 PM|
OK, I will mistrust such sites/certs. But, I see this issue, red crossed out https, on sites that both IE and Firefox load without issue or warning, using the same default security configuration. Clicking on the triangle danger sign says "This site's identity has not been confirmed." I look at the certs, and while I will not proclaim any deep expertise, I see what looks like reasonable content with valid dates &c. So I can a) use a browser that doesn't notice the issue, or b) acknowledge that Chrome sees some issue & proceed as in life w/o guarantees, or c) halt my online transactions for some time while I report this to various sites, in the hopes that Chrome has identified something that all these sites should know about, and they'll all respond well, and then I can some day come back and try Chrome again. If this is an answer, it's not the one I want, and at best, it fails to urge me Chrome-ward.
IE Version 7.0.5730.13
Firefox version 3.0.7
Google Chrome 220.127.116.11 (Official Build 9043)
|Re: https in red, crossed out||Gmunny||8/2/09 9:53 AM|
I get the same exact results as d-ray when trying to log into my Earthlink webmail; red diagonal line running through "https" in red letters. I called E and they said it was because I had popup blockers on. The agent said the transactions were safe, but then he asked if I wanted to turn off the pop-up blockers, so obviously he is a moron. I asked him why they even generate pop-ups on an email account I pay $21/month for? No answer. Yes, I'm a loser for keeping this account for so long and am finally making the conversion to gmail for good. I just added this in hopes that it would add a clue to the discussion. Like d-ray, my certs check out okay when I dig a bit deeper so maybe the moron at E was right ??? Google - please address this issue and at least let us know what is the real cause ! Thanks.
|Re: https in red, crossed out||jazzymel||4/15/10 6:17 AM|
Here it is 4/15/10 and the Crossed-Out Red "HTTPS" is still an issue. I just encountered it on the universalcard.com site, the AT&T Citibank Visa site. I think Google should correct this somehow, they will be loosing users if they don't.
Google fix this!!!!!
|Re: https in red, crossed out||Curb71||5/13/10 12:37 PM|
I got the same problem going to ticketmaster during the presale of KROQ's Weenie Roast. There are probably thousands of people at the same minute doing the same thing and only I'm getting the error I'm sure. I tried with FF too and it said the same thing that the certificates are expired but if I try to access with any other computer on my network they all work fine. I wonder what could be causing this on my main desktop.
|Re: https in red, crossed out||pjbtrberb||6/5/10 4:48 AM|
I had the same problem and then realized my wife accidentally changed the date on our pc.
I changed back the date to the correct date rebooted and everything worked fine.
|Re: https in red, crossed out||tzf30||8/19/10 9:12 AM|
It's a frustrating issue. There is an IBM web connection that I regularly access (mainframe HMC console) using Firefox and/or IE and/or Maxthon and/or Avant and/or...anything but Chrome. The crossed out https appears and no matter what I do I can't seem to access the site. Firefox issues a warning and allows me to download and install a certificate and from that point on, I have no problems. IE warns me but if I ignore it it will let me through. It would be nice to have some sort of solution for Chrome so I don't have to use a secondary browser for sites such as this.
|Re: https in red, crossed out||thomas blanchard||9/8/10 1:31 PM|
actually Joshd's answer is not totally right :
When a red cross appears on an HTTPS web site (left from the web address), it is necessary to click on the red cross to know why chrome tells this site is not completely safe :
there are 3 sections : Identity, connexion, history
- if the identity is a green cross, it means that *you are on the RIGHT web site*.
if it is warning or red, you should leave this web site : it is not verified anymore by a trusted source (or has never been).
- it the connection is orange, you have to read why, it is usually because some part of the page haven't been crypted (some picture, ads, or text without importance). usually it is safe to continue, but I agree with Chrome and google, when we deal with sensible data, the web site should be completely secure.
if the connexion is green, so everything is fine,
- history tells if you have already visited this web site before and if the overall security or web site has changed.
|Re: https in red, crossed out||TigreAzul||9/22/10 10:27 PM|
I'm on Google Mail and i'm getting that error from their own site? The logic you have all mentioned seems sound, but why would Chrome think it's own Maker's website isnt safe? is it a cookie thing? Does that need to be cleared?
|Re: https in red, crossed out||agl||9/23/10 12:24 PM|
TigreAzul: if you can reproducibly get a red cross (or a padlock with a red cross, which is what it looks like now) on GMail then we would like to know how. Please describe what actions you take to see it. Also, if you open a new tab, press Ctrl+Shift+I, select 'Console' and then enter 'https://mail.google.com' in the address bar, it should tell you which resources are triggering the problem.
|Re: https in red, crossed out||bennettvonbennett||9/25/10 10:03 AM|
I get the red cross-out effect in gmail, using Chrome 6.0.472.63 beta on a MBP running 10.6.4 - as far as I know I haven't changed anything at all re: my gmail settings or anything else.
don't remember seeing a certificate warning dialog either but it's very possible I just clicked through it.
|Re: https in red, crossed out||Wind Addict||9/26/10 7:53 AM|
Hello All - Thomas B - hit it on the head-thanks!.... in my case there are google docs that are shared - that are not secure. So the chrome is looking deeper into the data / content security than IE or FF.
|Re: https in red, crossed out||heeelllpppp||9/29/10 9:32 PM|
I also get the crossed out https notification on my schools website, and every time I access my gmail from chrome. I am using the latest version of chrome on OSX 10.5.8. Using firefoc results in normal https.
|Re: https in red, crossed out||WaveWalker||10/1/10 3:24 AM|
The red https with a red cross through appears whenever I am on my home page and click the gmail button beneath the bookmarks to the right of the word Web. It also appears sometimes on my account settings page. Right clicking on the "X" shows the Connection is orange.The identity and visit history are green.
Under Connection it says: "Your connection to mail.google.com is encrypted with 128-bit encryption. However, this page includes other resources which are not secure. These resources can be viewed by others while in transit, and can be modified by an attacker to change the behavior of the page.
The connection is encrypted using RC4_128 with SHA1 for message authentication and RSA as the Key exchange mechanism. The connection is not compressed.
. An example is the first one which says:
|Re: https in red, crossed out||CraigJ88||10/1/10 10:10 AM|
If you visit a page on a specific domain that has mixed http and https items you will get the red https cross through. This is good. If they visit subsequent https pages on the site that are 100% https content, the red https cross through persists, even though the pages is perfectly fine. On my sites this generally happens when a user specifically requestes a page via https that has some hardwired items on it and isn't intended to be secure, then browses to a https page.
For example, on a given home page there are links to http content. If the user forces the page to render via https then in the developer tools console they get all the "The page at https://domain.com displayed insecure content from http:// etc..." Then they then click over to a secure page the console displays no errors yet the error indication to the user persists.
In Firefox, for example, if I do the above the home page shows the mixed content warning, but then I click over to a secure page, the address bar link turnes blue and all is well. Safari behaves in a similar manner to Firefox and the error console shows identical errors to what shows up in Chrome as you would expect.
From my perspective this is a bug. An invalid cert is one thing, but a page either has mixed content or it doesn't and Chrome is telling the user that the page they are on has insecure content that "can be viewed by others while in transit" and that is simply not the case.
|Re: https in red, crossed out||mdhr24||10/17/10 12:17 PM|
i had accidently clicked on a spam mail and then wen i refreshed the page.. i get https with a red cross..
its very simple to remove it..
in google chrome.. go to settings>options>change proxy settings> now wat you have to do is change the privacy and security to high..
the privacy wud be at low and security will be at medium by default.. which you have to change..
den just apply the settings and.. tadda... d red cross is gone.. ;) :)