Closed Bug 135661 Opened 23 years ago Closed 23 years ago

Padlock icon does not reflect the security of the current tab

Categories

(Core Graveyard :: Security: UI, defect)

Product:
Core Graveyard
Component:
Security: UI
Version:
1.0 Branch
Platform:
x86
Windows NT
Type:
defect
Priority:
Not set
Severity:
blocker

Tracking

(Not tracked)

Status:
VERIFIED DUPLICATE of bug 101723

People

(Reporter: nik.clayton, Assigned: ssaux)

Details

Browsing multiple sites through Mozilla's tabbed interface, I went to place an online order at a site loaded in to one of the tabs (at www.qed-uk.com, with a URL starting https://.../). Before filling out the order form I checked the padlock icon in the bottom right of the UI, and was surprised to see it was unlocked. Clicking on the icon bought up the page info dialog. However, the information that was displayed was for the page in the first tab that I had open (which was search.cpan.org in this case), not for the tab I was currently viewing. Obviously, CPAN doesn't use SSL. . . Opening up a separate Mozilla window and going to the order form in that window correctly showed me that the current page was secure, and that the certificates for the site are valid. I carried on, and placed my order. I've marked this as a blocker not so much because a secure site in a tab may be incorrectly marked as insecure, but because an insecure site in a tab may be marked as secure *if* the site in the first tab is secure, completely misleading any user who doesn't check that the URL in the Page Info dialog matches the URL of the page in the tab that they're currently viewing. I've verified this by opening up a fresh copy of Mozilla and going to the secure site in tab1 (padlock shown closed). Then I opened up a second tab and went to http://www.google.com/. The padlock remains closed for the Google home page, and any sites I go to following a Google search, despite the fact that these sites are definitely not secure.
you didn't specify a build # but i'm 99% sure this is a dupe of 101723 *** This bug has been marked as a duplicate of 101723 ***
Status: UNCONFIRMED → RESOLVED
Closed: 23 years ago
Resolution: --- → DUPLICATE
This appears to be a dup of #134851. There it is on W98SE
too quick to act. reopening
Status: RESOLVED → UNCONFIRMED
Resolution: DUPLICATE → ---
Reporter, please tell us the Build ID of the copy of Mozilla you are running... bug 101723 was fixed after 0.9.9 so if you are using 0.9.9, this is probably a duplicate of that bug....
I'm 99% sure this is a dupe, but I'm reassigning it to PSM for tracking.
Assignee: mstoltz → ssaux
Component: Security: General → Client Library
Product: Browser → PSM
QA Contact: bsharma → junruh
Version: other → 2.3
*** This bug has been marked as a duplicate of 101723 ***
Status: UNCONFIRMED → RESOLVED
Closed: 23 years ago23 years ago
Resolution: --- → DUPLICATE
Verified dupe.
Status: RESOLVED → VERIFIED
Product: PSM → Core
Version: psm2.3 → 1.0 Branch
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.