While perusing about:config(changed NOTHING!), i noticed an entry:"network.websocket.allowInsecureFromHTTPS"-should I be concerned? Sounds bad to me...
To be clear-- I've never edited any about:config entries before, without following explicit instructions to do so, by a trusted source(i.e., Firefox Help). Out of curiosity though, I like to browse the entries once in a while, and seem to have developed a "sixth sense" in detecting things that don't seem right. My "gut" is rarely wrong! The entry in question: "network.websocket.allowInsecureFromHTTPS" sure seems like a bad thing to me, I've never seen it before. Have I been hacked?(I've just updated FF, I have it set to update automatically) Does this signify compromised https pages that I visit?
Chosen solution
by philipphello, per default network.websocket.allowInsecureFromHTTPS should be set to false.
Read this answer in context 1Additional System Details
Installed Plug-ins
- Shockwave Flash 11.6 r602
- iTunes Detector Plug-in
- Next Generation Java Plug-in 10.15.2 for Mozilla browsers
- NPRuntime Script Plug-in Library for Java(TM) Deploy
- Google Update
- Adobe PDF Plug-In For Firefox and Netscape 10.1.6
- Shockwave Flash 11.5 r502
- Amazon MP3 Downloader Plugin 1.0.17
- The QuickTime Plugin allows you to view a wide variety of multimedia content in Web pages. For more information, visit the QuickTime Web site.
- VLC media player Web Plugin 2.0.2
- A plugin to detect whether the Adobe Application Manager is installed on this machine.
- Adobe Shockwave for Director Netscape plug-in, version 11.6.6.636
- 5.1.10516.0
- Adobe Shockwave for Director Netscape plug-in, version 11.6.5.635
- GEPlugin
- NPWLPG
Application
- User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:19.0) Gecko/20100101 Firefox/19.0
More Information
Chosen Solution
hello, per default network.websocket.allowInsecureFromHTTPS should be set to false.
Question owner
Thanks, it is set to "false." You have put my mind at ease on that one!