[whatwg] Encrypted HTTP and related security concerns - make mixed content warnings accessible from JS?
timeless
timeless at gmail.com
Thu Nov 11 11:19:56 PST 2010
On Thu, Nov 11, 2010 at 12:17 PM, Ingo Chao <i4chao at googlemail.com> wrote:
> For automated error reporting, say for a HTTPS mashup page with 3rd
> party advertisement content, I would like to have a security warning
> thrown for the mixed content situation (HTTPS mixed with HTTP
> content), accessible from JavaScript.
>
> Would that be possible to specify?
sounds like it's asking for information disclosure.
so offhand, i'd say "no".
Use a web debugger (DragonFly, Firebug, ...).
More information about the whatwg
mailing list