Following in the footsteps of Chrome it seems FireFox is testing a UI change to highlight further the dangers of password fields on non-HTTPS pages.
For many years the encryption standard used by certificates was SHA-1. Earlier this month security researchers recently developed an attack against SHA-1 stating that it can now be defeated at a cost of just $75,000 to $120,000 in…
If your site has a login form make sure you are using HTTPS as the major browsers are starting to warn users about lack of encryption.
If your website loads a form using type=”password” the browsers assume this means you have some…
Firefox 23 is due for release on 17 May 2013. An important update with this release will be the default setting to block mixed content on websites.
What is mixed content?This is when a page loaded over https also contains elements which are…
Mozilla will be disabling MD5 in their environment from June 30, 2011. This means that any SSL certificates containing an MD5 signature algorithm will not work in later FireFox browsers after that date.
For a long time the padlock symbol has been used in browsers to show when a connection is secure. However from Firefox 4.0 Mozilla have decided that the padlock symbol will no longer be used. The reasoning appears to be that it has become misunderstood to…