Connection is not secure

[marlboroza]

https://bitcointalk.org/index.php?topic=1951732.20



 

Only here.

[mprep]

It's not fully secure since it's linking to an avatar located on a website without SSL (as in an image outside the forum). Seems like one of the few remaining users (specifically this guy) who got an avatar before the avatar vulnerability was discovered and hasn't changed it since. I'll ping theymos about this.

[marlboroza]

I noticed something weird in this thread:

Page #1:
https://bitcointalk.org/index.php?topic=5073793.0


Page #2:
https://bitcointalk.org/index.php?topic=5073793.20


Page #3 and #4
https://bitcointalk.org/index.php?topic=5073793.40

https://bitcointalk.org/index.php?topic=5073793.60

Page #5:
https://bitcointalk.org/index.php?topic=5073793.80


Then page #6:
https://bitcointalk.org/index.php?topic=5073793.100


On pages #7 and #8 connection is not secure and then page number 9:
https://bitcointalk.org/index.php?topic=5073793.160


And so on.

[khaled0111]

I think it is because of the http link in some users signatures codes.
http links are considered insecure thus your web browser will warn you.

[marlboroza]

I think it is because of the http link in
Jfsglady signature.

Everything is good here https://bitcointalk.org/index.php?topic=5087584.msg49059160#msg49059160 so I don't think spambie's signature is the reason. Don't know  

No one has signature on this page https://bitcointalk.org/index.php?topic=5073793.460 and I don't see avatars and links either.
I noticed the same thing in these threads:

https://bitcointalk.org/index.php?topic=5088562.0
https://bitcointalk.org/index.php?topic=5064169.0
https://bitcointalk.org/index.php?topic=5036621.0 - avatar? - it is fine here
https://bitcointalk.org/index.php?topic=4475090.160 - I thought this is because of bit679'2 avatar but on the next page everything is ok.
https://bitcointalk.org/index.php?topic=4479636.0 page #4, 6, 7, 8, 12, 13 etc
https://bitcointalk.org/index.php?topic=2064871.0 page # 3,4,5 etc

[o_e_l_e_o]

If you press F12 in either Firefox or Chrome to enable the Web Console, it will tell you which parts of the page are insecure.

In some of those threads it is because of http:// links in signatures. Other threads are pulling content from various insecure sites, but I'm not sure why.

Edit:

According to the source code, the following users are displaying an invisible avatar from an insecure link. All these users were registered back in 2011 and have lain dormant until 2018.

leholmes12
saymajaan24
conklinliane
ArtHawk678
RalphPitts
clark581

It is explained in mprep's old post from above:

It's not fully secure since it's linking to an avatar located on a website without SSL (as in an image outside the forum). Seems like one of the few remaining users (specifically this guy) who got an avatar before the avatar vulnerability was discovered and hasn't changed it since. I'll ping theymos about this.