Helping people with computers... one answer at a time.

You don't want to eliminate https. That's eliminating the security that you want. There are better ways to deal with website security warnings.

I have OnStar and every time I switch from one window to the next, the security window opens asking if I want to view only the content that was delivered securely. I don't have that much trouble accessing my bank account. How do I eliminate https?

In this excerpt from Answercast #60, I look at those (unfortunately too-common) warnings that websites are delivering insecure content.

Turning off security

Well, to be honest, you don't want to eliminate https. That's eliminating the security that you want.

HTTPS stands for HTTP Secure and it's the connection that encrypts all of your data between your browser and whatever service you're connecting to. That's something you don't disable.

Secure content messages

What's happening here is this is a fault of the website design. The website you're connecting to contains information that is both using HTTPS and HTTP.

That is fundamentally insecure. It actually represents a security vulnerability if someone were interested in attacking you via that website. It's not very common. It's usually very benign - but very technically, it does represent a security vulnerability of some sort.

The real solution to this problem is to complain to the website owner and tell them to fix the problem. They should be delivering all of their content as https or http, but not a mixture of the two.

Different browsers

Now, you haven't indicated what browser you are using. But most browsers will actually allow you to disable this warning simply because it's unfortunately very common.

The article I have covers Internet Explorer. It's called, "Can I get rid of the "This page contains both secure and nonsecure items" warning?"

That's the warning that Internet Explorer gives you when you have this problem. I'm sure that other browsers have a setting that allows you to disable or ignore this warning. That's a fine work around that's actually pretty safe to do.

As I said, it's not very common that anybody's going to try and attack via this kind of vulnerability. But the long-term solution of course is to get that website to fix it so that it's not trying to display a mixture of the two.

Next from Answercast #60 - Should I partition my external drive?

Article C5904 - October 11, 2012 « »

Share this article with your friends:

Share this article on Facebook Tweet this article Email a link to this article
Leo Leo A. Notenboom has been playing with computers since he was required to take a programming class in 1976. An 18 year career as a programmer at Microsoft soon followed. After "retiring" in 2001, Leo started Ask Leo! in 2003 as a place for answers to common computer and technical questions. More about Leo.

Not what you needed?

Comments on this entry are closed.

If you have a question, start by using the search box up at the top of the page - there's a very good chance that your question has already been answered on Ask Leo!.

If you don't find your answer, head out to http://askleo.com/ask to ask your question.