Hello,

We have two sites one secure (SSL) and another insecure, and when we
direct the traffic from SSL to non-SSL, we get this message

"Although this page is encrpted, the information you have entered is to
be sent over an unencrypted connection and could easily be read by a
third party.

Are you sure you want to continue sending this information?"

Although this is valid message, but how can we turn this feature off. I
tries playing with Secuirty/SSL options but futile.

Please advise...

Thanks,
Chris

_Srinivas.Konteti@cox.com_ spoke thusly on 23/02/2006 10:50 AM:
> We have two sites one secure (SSL) and another insecure, and when we
> direct the traffic from SSL to non-SSL, we get this message
>
> "Although this page is encrpted, the information you have entered is to
> be sent over an unencrypted connection and could easily be read by a
> third party.
>
> Are you sure you want to continue sending this information?"
>
> Although this is valid message, but how can we turn this feature off. I
> tries playing with Secuirty/SSL options but futile.

Is there not a check box, setting Firefox to turn off that warning?
--
Chris Ilias
mozilla.test.multimedia moderator
Mozilla links <http://ilias.ca>
(Please do not email me tech support questions)

Chris Ilias wrote:

> _Srinivas.Konteti@cox.com_ spoke thusly on 23/02/2006 10:50 AM:
>
>>We have two sites one secure (SSL) and another insecure, and when we
>>direct the traffic from SSL to non-SSL, we get this message
>>
>>"Although this page is encrpted, the information you have entered is to
>>be sent over an unencrypted connection and could easily be read by a
>>third party.
>>
>>Are you sure you want to continue sending this information?"
>>
>>Although this is valid message, but how can we turn this feature off. I
>>tries playing with Secuirty/SSL options but futile.
>
>
> Is there not a check box, setting Firefox to turn off that warning?
if the OP can't see that box, then in the address bar type in
about:config and look for the following entries:

security.warn_entering_secure
security.warn_leaving_secure
security.warn_submit_insecure
security.warn_viewing_mixed

when found, and if they True, then double click on them and change
them to false

> Hello,
>
>
>
> We have two sites one secure (SSL) and another insecure, and when we
> direct the traffic from SSL to non-SSL, we get this message
>
>
>
> "Although this page is encrpted, the information you have entered is to
> be sent over an unencrypted connection and could easily be read by a
> third party.
>
>
>
> Are you sure you want to continue sending this information?"
>
>
>
> Although this is valid message, but how can we turn this feature off. I
> tries playing with Secuirty/SSL options but futile.
>
>
>
> Please advise...
>
>
>
> Thanks,
>
> Chris
>
>
>
The warning message you wrote above explains everything. First, you
encrypt the traffic then redirect it to an unencrypted page. In order to
"handshake" with an http page, https page gotta use unencrypted
connection. This means, your data is under ssl protection. But the data
sent from server using https to server using http is not safe. If these
servers are at the same network and there's no possibility of sniffing
the traffic between them, there's not much risk. Otherwise, it's inSecureSL