Firefox loads HTTP site of Google
When I type "google.com" in the address bar, the HTTP site of Google loads by default. Why does this happen ? How do I make it make it load HTTPS site when I type "google.com" ?
Избрано решение
Hmm, that's strange. I don't know why Google is doing that.
Due to another change I made on my Firefox, I am getting the secure site. It involves lying to google.com about my mobile browser as described in this thread: https://support.mozilla.org/questions/1125353 (note: image search blanks out with that setting, so if image search is important to you on mobile, I don't recommend it)
With that useragent string set, Google DOES redirect to HTTPS.
It just doesn't make sense that Google gives such an inferior version of its site to Firefox users. At least, from our perspective it doesn't make sense. Google probably has its reasons.
Прочетете този отговор в контекста 👍 2Всички отговори (6)
By typing https://google.com? Create a bookmark if you get tired of typing it every time.
christ1 said
By typing https://google.com? Create a bookmark if you get tired of typing it every time.
Is this the default behaviour of Firefox or is it specific to my browser ?Is there no other way to change this behaviour, like clearing cache or something ?
Променено на
Not sure what default behavior you're talking about.
If you type google.com, then you're implicitly telling the browser to use http://google.com. For secure sites the server would then redirect you to https://google.com. However, that makes you vulnerable to a man-in-the-middle attack.
If security is the concern always use https://google.com.
Why the Google server doesn't do the redirect to https in your case I don't know, but that's something you'd need to ask Google.
The Desktop browser and the Chrome browser in my mobile, loads https://google.com when I type google.com . So, I am confused about why the Firefox browser for Android loads the HTTP site when I type google.com .
Why the Google server doesn't re-direct to the https site while the desktop version does I don't know. It may be related to how HSTS is implemented. https://www.owasp.org/index.php/HTTP_Strict_Transport_Security
You can check with Google, and/or open a bug in Bugzilla for Firefox for Android. https://bugzilla.mozilla.org/
In any case, the safe way is to use https in the first place.
Избрано решение
Hmm, that's strange. I don't know why Google is doing that.
Due to another change I made on my Firefox, I am getting the secure site. It involves lying to google.com about my mobile browser as described in this thread: https://support.mozilla.org/questions/1125353 (note: image search blanks out with that setting, so if image search is important to you on mobile, I don't recommend it)
With that useragent string set, Google DOES redirect to HTTPS.
It just doesn't make sense that Google gives such an inferior version of its site to Firefox users. At least, from our perspective it doesn't make sense. Google probably has its reasons.