Insecure password warning in Firefox

Revision Information
  • Revision id: 109397
  • Created:
  • Creator: Joni
  • Comment: first draft for Nightly feature
  • Reviewed: Yes
  • Reviewed:
  • Reviewed by: jsavage
  • Is approved? Yes
  • Is current revision? No
  • Ready for localization: No
Revision Source
Revision Content
This feature is available in an experimental version of Firefox.

Firefox will display a lock icon with red strike-through red strikethrough icon in the address bar when a login page you’re viewing does not have a secure connection. This is to inform you that if you enter your password it could be stolen by eavesdroppers and attackers.

What can I do if a login page is insecure?

If a login page for your favorite site is insecure, you can try and see if a secure version of the page exists by typing https:// before the url in the location bar.

Not recommended: You can also continue to log in to the website even if the connection is insecure, but do so at your own risk.

About insecure pages

Pages that need to transmit private information, such as credit cards, personal information and passwords, need to have a secure connection in order to keep attackers from stealing your information. (Tip: A secure connection will have HTTPS in the address bar, along with a green lock icon).

Pages that don’t transmit any private information can have an unencrypted connection (HTTP). Never enter private information, such as passwords, on a web page that shows HTTP in the address bar. The information you enter can be stolen over this insecure connection.