This is a minor bug that might cause some confusion to BFUs: When submiting a form to a secure page (action https://...) from an insecure page Mozilla gives the user a warning that the data is being submited clear text and can be read by third parties. That is incorrect.

There's supposed to be a warning message (see bug 63095). Is it worth it to use different text for this case? If we used a different text, would the dialog with the new text also have a "don't ask me again" checkbox, and would checking it make both dialogs go away?

Unless there's also a warning message when submitting a secure form from a secure page I believe there should not be a warning in this case. And even if you do want the warning, it shouldn't say the submission is insecure which is clearly incorrect.

marking NEW.

reassinging to new owner of form submission

Okay, I'll bite. What is a BFU? And how is this different from bug 63095?

setting milestone

This *is* bug 63095. Precisely the same symptoms. They discussed this issue in that bug. The reason for the dialog is twofold: - the insecure page could have been modified in-transit without you knowing, thus making the information that is to be submitted insecure. - a partial warning (you are submitting FROM an insecure page) was not considered strong enough to warn off users. If you disagree with it, go to that bug and keep the discussion going. Trudelle: BFU ends in User and starts with various colorful words depending on who you talk to. *** This bug has been marked as a duplicate of 63095 ***

verifying dup