Actual:

1. I opened https://packages.debian.org/testing/libfreetype6 and clicked on the link
   [freetype_2.10.2+dfsg-2.debian.tar.xz] multiple times.
2. Nothing happened.
3. Then I opened Chromium and the download worked.
4. 10 minutes later I searched for the cause and found this pref I had forgotten about.

Expected:
Not nothing.
a) Some dialog: "You are not able to download this file insecurely"
b) upgrade-insecure-requests: bug 1601408 - but for files.

I guess we log to console, but ultimately some better indication would be better.

Basti, can we do something about it?

Yes, about 10% of all downloads are mixed content according to telemetry, i'll add a dialog option for users to choose :)

We've received a similar report in https://github.com/webcompat/web-bugs/issues/55387.

When trying to download a file on https://www.mysonicwall.com/muir/ui/downloadcenter, nothing happens (note that an account is needed to access the page). It is possible to download the file in Chrome.

No errors are thrown in the console on this site when attempting this download. Interestingly, if I try it in a codepen reduced test case with the same file, the "Blocked loading mixed active content" message is thrown.

Reproduced this issue also on https://www.thinkbroadband.com/download - tested on Windows 7 and Mac OS X 10.15 using the latest Nightly 80.0a1 - the Opening dialog is not displayed when trying to download any file.

A new indicator was added in bug 656296.

Sorry, correct ID is bug 1656296 for the indicator.

Closing this since we now have an indicator and also the option to unblock :)