Hi ludwigschubi, that's a good idea. I don't know whether there is a built-in setting for that.

If you would consider an add-on, the one that comes to mind is:

https://addons.mozilla.org/firefox/addon/https-everywhere/

Also, of course, if you have visited the site before, you may find it on the autocomplete drop-down below the address bar.

Note that most Mozilla sites have moved to mozilla.org, so references to mozilla.com might be older entries from the past, so you will likely be redirected to https://mozilla.org as well.

Maybe remove all http://mozilla.com/ items from the history and also check all your bookmarks.

cor-el said

Note that most Mozilla sites have moved to mozilla.org, so references to mozilla.com might be older entries from the past, so you will likely be redirected to https://mozilla.org as well. Maybe remove all http://mozilla.com/ items from the history and also check all your bookmarks.

It's not in regards to mozilla, I just used it as an example for what happens on every site

jscher2000 said

Hi ludwigschubi, that's a good idea. I don't know whether there is a built-in setting for that. If you would consider an add-on, the one that comes to mind is: https://addons.mozilla.org/firefox/addon/https-everywhere/ Also, of course, if you have visited the site before, you may find it on the autocomplete drop-down below the address bar.

Is there a specific reason why it's only available through a plugin and not the default behaviour?

ludwigschubi said

Is there a specific reason why it's only available through a plugin and not the default behaviour?

Widespread use of HTTPS is fairly new and lots of sites still do not support HTTPS connections successfully. Sites that WANT to be accessed using only HTTPS can get on a pre-loaded list included with Firefox and Chrome.

At some point, perhaps Firefox's default behavior will change, assuming it doesn't cause too much aggravation to users. Do you want to file a bug? https://bugzilla.mozilla.org/

jscher2000 said

Sites that WANT to be accessed using only HTTPS can get on a pre-loaded list included with Firefox and Chrome

Where can I find that list?

In regards to issuing a bug report, I don’t know whether it really qualifies as a bug, I guess it’s just a wanted feature/functionality I would like to see Firefox do since it would just be another small thing that indicates that the Mozilla community cares about such things

ludwigschubi said

jscher2000 said

Sites that WANT to be accessed using only HTTPS can get on a pre-loaded list included with Firefox and Chrome

Where can I find that list?

Warning: very large 1.2 MB page. You might want to right-click > Save Link As on it: https://hg.mozilla.org/releases/mozilla-release/raw-file/8b0e6968831f04d051b556c26dbb5c1b5cb994fa/security/manager/ssl/nsSTSPreloadList.inc

In regards to issuing a bug report, I don’t know whether it really qualifies as a bug, I guess it’s just a wanted feature/functionality I would like to see Firefox do since it would just be another small thing that indicates that the Mozilla community cares about such things

"Enhancement" requests eventually go through the same system, since it is how programming tasks are assigned.

The STS preload list is a builtin file that is generated from a Chromium file.

• https://dxr.mozilla.org/mozilla-release/source/security/manager/ssl/nsSTSPreloadList.inc

Note that only the file in the Firefox source code is about 1.2 MB, that raw file is much smaller (425.85 KB; the original Chromium file is about 9MB).

• https://hg.mozilla.org/releases/mozilla-release/raw-file/tip/security/manager/ssl/nsSTSPreloadList.inc