I have used Firefox for many years. A few months ago Firefox started warning me of a security threat (I believe it said unsecured site or something) when I logged in. I logged in anyway.

A few minutes ago I tried to log in with Firefox, Norton came up in a big window, told me the site was blocked as it was a security threat.

Anyone else have such problems? It wouldn't surprise me that the liberal mindsets in these firms would take exception to a gun forum merely for political reasons.

(I am using Google which doesn't seem to have any problems).

Hmmmm. I can't seem to duplicate your problem. It's all good, at least on my end.

Make a pass with Malwarebytes and your favorite AV software, toss your cookies, kill all errant processes and progies, etc., et all, ad nausium, ad infinitum, 'n' stuff.

Reboot, rinse, repeat. You know the drill.

H&K-Guy

The issue is that the login page does not use encryption. Someone in the middle could theoretically grab your username and password.

I saw the same thing. Posted in the SIGforum Office section.

Showed pics of the display.

Looks like Norton Safe Web has tagged SIGforum as unsafe.

I just logged in using Chrome, got the Norton block (for the first time)

quote:

Originally posted by RichN:
The issue is that the login page does not use encryption. Someone in the middle could theoretically grab your username and password.

Thanks for the info.

quote:

Originally posted by Scoutmaster:
It wouldn't surprise me that the liberal mindsets in these firms would take exception to a gun forum merely for political reasons.

Loosen-up that tinfoil at bit, there, Scoutmaster

All it's doing is warning you that you're supplying authentication credentials (username + password) over an unencrypted link.

There are two problems attendant with doing so: 1. Somebody sniffing traffic to/from Sigforum can snag username/password credentials as they fly by. 2. DNS hijacking can lead you to a Sigforum look-alike, you "log in": Bang: Your credentials are stolen.

For a site like Sigforum, where no commerce is done (e.g.: CC info, etc. passed): The threat is not so great. But your browser has no way of knowing that, so it warns whenever login credentials are passed over an insecure circuit.

No offence to our host: But there's really no reason SF can't be using HTTPS. With the successful launch of Let's Encrypt, which provides free non-validated SSL certs for all comers, every site on the 'net can easily have SSL/TLS encryption.

There's even a set of tools to make it easy-peasy to do, and have the cert automatically renewed. (The automatically expire every 90 days. Saves having to deal with the complexities of Certificate Revocation Lists [CRLs].)

quote:

Originally posted by parabellum:
How can I disable Insecure password warning in Firefox?

With all due respect: In my opinion that is unwise.

There's nothing to worry about in any of this but be my guest.

Equifax and all their really super duper double naught spy cipherin' worry me.

Here. Nope. Not worried.

para,

I got the same kind of warnings. I posted in the SIGforum Office section.

Norton Safe Web is tagging sigforum. I posted pics of the displays.

I am in SIGforum a lot. I don't have any concerns on this. Just letting you know of the issue.

quote:

Originally posted by ensigmatic:...
Loosen-up that tinfoil at bit, there, Scoutmaster....

Thanks for the advice, you don't know my neighbors, sometimes tinfoil might come in handy.

Most neighbors are propeller-heads (techies) of the Hillary persuasion. One told me they have a hard time sleeping at night, they fear for their safety, knowing I might have a gun in the home (they know I am a white male Christian conservative so I must have a gun).

My surrounds include techies from Apple, Google, Facebook, Intel, nVidia, Symantec, Mozilla, various communications firms, they all drink the same political kool-aid.

Scoutmaster,

Your "tin foil" concern was exactly the same as my first reaction on seeing the warning.

sdy

quote:

Originally posted by Scoutmaster:

quote:

Originally posted by ensigmatic:...
Loosen-up that tinfoil at bit, there, Scoutmaster....

Thanks for the advice, you don't know my neighbors, sometimes tinfoil might come in handy.

Sorry, meant to put a smiley on that comment. Thanks for reading it as implied

You're connecting to a website that doesn't use HTTPS (SSL) for authentication.

It's pretty much a 'standard' around the world now. Personally I use a different password for every website so. I really couldn't care less if someone managed to sniff my password for the forum.

Firefox just thinks they are 'helping' most of the normal users and saving them from themselves.

I just got the Dangerous Website Blocked message on Google Chrome. 1st time, and I was already logged in, just changing page to a different topic from this morning.

I do not like to think it's more than coincidence. Is it possible somebody does not like our favorite topics.

Same here...
Logged on with Google, got the Norton Security threat. Logged on again, same thing happened again...

It doesn't surprise me that Norton figures into this. I swear, that thing is itself a virus.

I use Norton and Firefox. I get the insecure login message but not the unsafe site message. It's been this way for months. No big deal.

quote:

Originally posted by preten2b:
I just got the Dangerous Website Blocked message on Google Chrome. 1st time, and I was already logged in, just changing page to a different topic from this morning.

Google's Safe Browsing tech. doesn't have Sigforum listed. You're welcome to check it, yourself, at https://transparencyreport.goo...safe-browsing/search

quote:

Originally posted by preten2b:
I do not like to think it's more than coincidence.

Then don't.

Of course: If you want to believe the maker of one of the world's most popular browsers has decided to commit Internet suicide over politics, you're free to do so.

(N.B.: I don't use Google Chrome/Chromium, but not because I think they're trying to control what I browse.)

quote:

Originally posted by CPD SIG:
Same here...
Logged on with Google, got the Norton Security threat. Logged on again, same thing happened again...

See emphasis, above. Solution: Don't use dodgy anti-malware tools. (N.B.: They're all dodgy, IMO.)