Avatar for Username

Vyhľadajte odpoveď

Vyhnite sa podvodom s podporou. Nikdy vás nebudeme žiadať, aby ste zavolali alebo poslali SMS na telefónne číslo alebo zdieľali osobné informácie. Nahláste prosím podozrivú aktivitu použitím voľby “Nahlásiť zneužitie”.

Ďalšie informácie

Táto téma bola archivovaná. Ak potrebujete pomôcť, založte prosím novú otázku.

How to turn off automatic https.

szerr
szerr
more options

When I visit an http site and specify a non-standard port, it automatically changes to https, which is not a site redirect but something Firefox changes. This site already has an https service, and the http service will redirect to https. I reproduced the same situation in chrome. Accessing the http service with a non-standard interface was normal. After accessing the https service once, the service with the non-standard port was also changed to https. Clearing the data will restore it. Is this cached? My HTTPS-Only Mode is turned off, and set an exception for this site. thx.

When I visit an http site and specify a non-standard port, it automatically changes to https, which is not a site redirect but something Firefox changes. This site already has an https service, and the http service will redirect to https. I reproduced the same situation in chrome. Accessing the http service with a non-standard interface was normal. After accessing the https service once, the service with the non-standard port was also changed to https. Clearing the data will restore it. Is this cached? My HTTPS-Only Mode is turned off, and set an exception for this site. thx.

Vybrané riešenie

szerr said
I reproduced the same situation in chrome. Accessing the http service with a non-standard interface was normal. After accessing the https service once, the service with the non-standard port was also changed to https. Clearing the data will restore it. Is this cached?

Sites can send browsers a Strict Transport Security header instructing the browser to always use HTTPS. See:

https://developer.mozilla.org/docs/Web/HTTP/Headers/Strict-Transport-Security

Browsers sometimes differ on the scope of the instruction, but in this case, it sounds like both Firefox and Chrome are in agreement that it covers all ports for that host.

Firefox stores HSTS instructions in a text file in your profile, and probably if you delete data for a specific site, it will clear that instruction, too. But of course, it will be saved again the next time...

Čítať túto odpoveď v kontexte 👍 1

Všetky odpovede (2)

zeroknight
zeroknight
more options

Does it still happen if you go to about:config and change network.dns.upgrade_with_https_rr to false?

Private windows will try HTTPS first (dom.security.https_first_pbm).

jscher2000 - Support Volunteer
jscher2000 - Support Volunteer
  • Top 10 Contributor
more options

Vybrané riešenie

szerr said
I reproduced the same situation in chrome. Accessing the http service with a non-standard interface was normal. After accessing the https service once, the service with the non-standard port was also changed to https. Clearing the data will restore it. Is this cached?

Sites can send browsers a Strict Transport Security header instructing the browser to always use HTTPS. See:

https://developer.mozilla.org/docs/Web/HTTP/Headers/Strict-Transport-Security

Browsers sometimes differ on the scope of the instruction, but in this case, it sounds like both Firefox and Chrome are in agreement that it covers all ports for that host.

Firefox stores HSTS instructions in a text file in your profile, and probably if you delete data for a specific site, it will clear that instruction, too. But of course, it will be saved again the next time...