cancel
Showing results for 
Search instead for 
Did you mean: 

Ebay sign in page does not have padlock-states only partially encrypted..IE has padlock. Why is ebay's sign in page not secure in Firefox? FF Version 14.0.1

Highlighted
New Contributor

Ebay sign in page does not have padlock-states only partially encrypted..IE has padlock. Why is ebay's sign in page not secure in Firefox? FF Version 14.0.1

When signing into ebay, the page starts to load with the green padlock, but when page is fully loaded there is no padlock. I can use Internet Explorer and so to the sign in page and it has the green padlock.

Why in Firefox is this sign in page not secure? Thanks

15 REPLIES
Legendary Contributor

Re: Ebay sign in page does not have padlock-states only partially encrypted..IE has padlock. Why is ebay's sign in page not secure in Firefox? FF Version 14.0.1

I'm getting the green lock at the moment.

When you have a problem with one particular site, a good "first thing to try" is clearing your Firefox cache and deleting your saved cookies for the site.

1. Bypass Firefox's Cache

Use Ctrl+Shift+r to reload the page fresh from the server. Any difference? If not...

2. Clear Firefox's Cache Completely

orange Firefox button or Tools menu > Options > Advanced

On the Network mini-tab > Cached Web Content : "Clear Now"

3. If needed, remove the site's cookies in this dialog

While viewing a page on the site, right-click and choose View Page Info > Security > "View Cookies"

Then try reloading the page. Does that help?

Site Moderator

Re: Ebay sign in page does not have padlock-states only partially encrypted..IE has padlock. Why is ebay's sign in page not secure in Firefox? FF Version 14.0.1

I see this request with a Moved Temporarily location response to an insecure http: link.

  • https://signin.ebay.com/ws/eBayISAPI.dll?SignIn&UsingSSL=1&pUserId=&co_partnerId=2&siteid=0&ru=http%3A%2F%2Fmy.ebay.com%2Fws%2FeBayISAPI.dll%3FMyEbayBeta%26MyEbay%3D%26gbh%3D1%26guest%3D1&pageType=3984

If the warning for mixed content is enabled that I'm notified.

https://srv.main.ebayrtm.com/rtm?RtmCmd&a=json&p=11751&ph=0&ev=0&uf=0&ord=1346238031178&e=USC:1&z=10...

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
Location: http://srv.main.ebayrtm.com/rtm?RtmCmd&a=json&p=11751&ph=0&ev=0&uf=0&ord=1346238031178&e=USC:1&z=10&...

It only happens the first time visiting the link and I can make it reappear if I use Clear Recent History to clear these items (Last Hour): Cookies, Cache, Active Logins If I leave out any those then it doesn't happen.

New Contributor

Re: Ebay sign in page does not have padlock-states only partially encrypted..IE has padlock. Why is ebay's sign in page not secure in Firefox? FF Version 14.0.1

I'm having the problem too. Only with Ebay. When I go to sign in, there is NO green padlock and when I right-click on the page, it says 'partially encrypted'. I cleared all the cookies in Mozilla by going to tools>options>advanced>network tab and chose 'clear now' under 'cached web content' and it didn't solve the problem. I'm now having to use IE to sign in securely on Ebay which I hate doing since IE is prone to freezing up and slowing my PC down. Any other solutions out there??

New Contributor

Re: Ebay sign in page does not have padlock-states only partially encrypted..IE has padlock. Why is ebay's sign in page not secure in Firefox? FF Version 14.0.1

Screen shot:

2012-10-03-18-22-21-911af7.png
Site Moderator

Re: Ebay sign in page does not have padlock-states only partially encrypted..IE has padlock. Why is ebay's sign in page not secure in Firefox? FF Version 14.0.1

That is still a problem with the eBay login page (http://my.ebay.com)

There is still a http redirect with this request.

HTTP/1.1 302 Moved Temporarily

Firefox shows in such a case a broken padlock to make that noticeable, but other browsers may not do that.
The Developer tools in Google Chrome show that http request in RED, but the location bar in GC shows an encrypted connection and you won't notice that files were retrieved via an insecure connection.

Legendary Contributor

Re: Ebay sign in page does not have padlock-states only partially encrypted..IE has padlock. Why is ebay's sign in page not secure in Firefox? FF Version 14.0.1

I either do not have an eBay account or I don't have a cookie for it. Maybe that's why I get a nice green lock on this page (redirected from my.ebay.com)? (I notice the word "guest" in there...)

https://signin.ebay.com/ws/eBayISAPI.dll?SignIn&UsingSSL=1&pUserId=&co_partnerId=2&siteid=0&ru=http%...

I'm not getting redirected on either request made to srv.main.ebayrtm.com by that page.

Edit: Forget what I said. My normal profile doesn't redirect, but if I start Firefox in a new profile, it does. There are way too many customizations to be able to quickly track down the difference.

Legendary Contributor

Re: Ebay sign in page does not have padlock-states only partially encrypted..IE has padlock. Why is ebay's sign in page not secure in Firefox? FF Version 14.0.1

IE presents me the dialog to block the insecure content. Firefox does not currently have this feature, but might have it in the future, as noted in this thread: Can unencrypted items in a https connection be hidden?

2012-10-03-20-39-12-a72223.png
Site Moderator

Re: Ebay sign in page does not have padlock-states only partially encrypted..IE has padlock. Why is ebay's sign in page not secure in Firefox? FF Version 14.0.1

Firefox 18 will have this.

It currently applies #identity-box[class="unknownIdentity mixedContent"] or #identity-box[class="unknownIdentity mixedActiveContent"], so that part is working, but the icon and UI (notification bar) hasn't been implemented yet.

  • resource:///chrome/browser/skin/classic/browser/

(Bug 782654 - Implement Mixed Content Blocker UI)


This code in userChrome.css works in Firefox 15 and later.

@namespace url("http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xul"); /* only needed once */

#urlbar[pageproxystate="valid"] > #identity-box.unknownIdentity.mixedContent #page-proxy-favicon,
#urlbar[pageproxystate="valid"] > #identity-box.unknownIdentity.mixedActiveContent #page-proxy-favicon {
 list-style-image: url("chrome://browser/skin/Security-broken.png")!important;
 -moz-image-region: auto!important;
}

#urlbar[pageproxystate="valid"] > #identity-box.unknownIdentity.mixedActiveContent {
 background-image: -moz-linear-gradient(hsl(1,90%,88%), hsl(3,80%,80%))!important;
 box-shadow: 0 1px 0 hsla(2,81%,16%,.05) inset!important;
 -moz-border-end-color: hsla(2,81%,16%,.2)!important;
 color: hsl(2,81%,16%)!important;
}

The customization files userChrome.css (interface) and userContent.css (websites) are located in the chrome folder in the user profile folder.

New Contributor

Re: Ebay sign in page does not have padlock-states only partially encrypted..IE has padlock. Why is ebay's sign in page not secure in Firefox? FF Version 14.0.1

So does anyone know if they're working on the problem?