Compare Revisions

secure https padlock lock grey

Firefox uses a padlock icon next to a website's URL to let you know your connection is encrypted. Click on the icon for more information.

The Site Identity button (a padlock) appears in the address bar to the left of the web address, when you visit a{for not fx70} secure{/for} website. You can quickly find out if the connection to the website you are viewing is encrypted, and in some cases who owns the website. This should help you avoid malicious websites that are trying to obtain your personal information. Most commonly, when viewing a secure website, the Site Identity button will be a {for not fx70}green padlock [[Image:green lock 42]]{/for}{for fx70}gray padlock [[Image:Gray padlock - Firefox 70]]{/for}. However, in a few cases you may see {for not fx70}no padlock, {/for}a gray padlock with a yellow warning triangle [[Image:orange triangle grey lock 42]] or a gray padlock with a red strike over it [[Image:unblocked mixed content 42]]. {for not fx70} {note}Clicking the [[Image:Site Info button]] button to the left of the address bar brings up the [[Site Information panel|Site Information panel]], which allows you to view more detailed information about the connection's security status and to change your security and privacy settings.{/note} {/for} {for fx70} {note}Clicking the [[Image:Fx70GreyPadlock]] padlock to the left of the address bar brings up the [[Site Information panel|Site Information panel]], which allows you to view more detailed information about the connection's security status.{/note} {/for} __TOC__ {warning}'''Warning:''' You should never send any sort of sensitive information (bank information, credit card data, social security numbers, etc.) to a website if the address bar does not show a {for not fx70}green{/for}{for fx70}gray{/for} padlock. In such cases, it hasn’t been verified that you’re communicating with the intended website and your data isn’t safe against eavesdropping!{/warning} {/for} {for not fx70} =Green padlock= A green padlock (with or without an organization name) indicates that: *You’re definitely connected to the website whose address is shown in the address bar and the connection hasn’t been intercepted. *The connection between Firefox and the website is encrypted to prevent eavesdropping. A green padlock plus the name of the company or organization, also in green, means this website is using an [https://en.wikipedia.org/wiki/Extended_Validation_Certificate Extended Validation (EV) certificate]. An EV certificate is a special type of site certificate that requires a significantly more rigorous identity verification process than other types of certificates. {/for} {for fx70} =Gray padlock= A gray padlock indicates that: *You’re definitely connected to the website whose address is shown in the address bar and the connection hasn’t been intercepted. *The connection between Firefox and the website is encrypted to prevent eavesdropping. Click the gray padlock to find out if the website is using an [https://en.wikipedia.org/wiki/Extended_Validation_Certificate Extended Validation (EV) certificate]. An EV certificate is a special type of site certificate that requires a significantly more rigorous identity verification process than other types of certificates. For sites using EV certificates, the legal company or organization name and location of the website owner displays when you click the gray padlock. {/for} =Gray padlock with yellow warning triangle= A gray padlock with a yellow warning triangle indicates that the connection between Firefox and the website is only partially encrypted and doesn't prevent eavesdropping. This also appears on websites with self-signed certificates or certificates that aren’t issued by a trusted authority. For information about what "partially encrypted" means, see [[Mixed content blocking in Firefox]]. This is a problem the site developer needs to resolve. {note}Do not send any sort of sensitive information (bank information, credit card data, social security numbers, etc.) to sites where the Site Identity button is a gray padlock with a yellow warning triangle icon.{/note} =Gray padlock with a red strike over it= {for not fx70} A padlock with a red strike over it indicates that the connection between Firefox and the website is either unencrypted or only partially encrypted. The connection doesn’t prevent against eavesdropping or [http://en.wikipedia.org/wiki/Man-in-the-middle_attack man-in-the-middle attacks]. This icon only appears if you’ve manually deactivated [[Mixed content blocking in Firefox|mixed content blocking]] or if you visit an [[Insecure password warning in Firefox|unencrypted (HTTP) page where a username or password can be entered]]. {/for} {for fx70} A padlock with a red strike over it indicates that the connection between Firefox and the website is either delivered using an insecure protocol (HTTP or FTP) <!--https://blog.mozilla.org/security/2019/10/15/improved-security-and-privacy-indicators-in-firefox-70/--> or that it is only partially encrypted because you've manually deactivated [[Mixed content blocking in Firefox|mixed content blocking]]. The site doesn't prevent against eavesdropping or [http://en.wikipedia.org/wiki/Man-in-the-middle_attack man-in-the-middle attacks]. {/for} {note}Do not send any sort of sensitive information (bank information, credit card data, social security numbers, etc.) to sites where the Site Identity button is a gray padlock with a red strike over it.{/note}