Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Firefox using HTTPS:// on HTTP:// website

I can not stop firefox replacing HTTP:// with HTTPS:// in urls. It seems normally you give it a url like http://anything.com and firefox tries https://anything.com:443 which fails to connect so it goes back to http and everything works.

My sites have a port number 8000. So i give it http://anything.com:8000. Firefox tries HTTPS://anything.com:8000 and gets an unencrypted response and throws this error.

   Error code: SSL_ERROR_RX_RECORD_TOO_LONG

I have tried setting browser.urlbar.autoFill to false as in [https://support.mozilla.org/en-US/que.../935614] but this does not work.

How do I prevent the replacement?

I can not stop firefox replacing HTTP:// with HTTPS:// in urls. It seems normally you give it a url like http://anything.com and firefox tries https://anything.com:443 which fails to connect so it goes back to http and everything works. My sites have a port number 8000. So i give it http://anything.com:8000. Firefox tries HTTPS://anything.com:8000 and gets an unencrypted response and throws this error. Error code: SSL_ERROR_RX_RECORD_TOO_LONG I have tried setting browser.urlbar.autoFill to false as in [[https://support.mozilla.org/en-US/questions/935614|https://support.mozilla.org/en-US/questions/935614]] but this does not work. How do I prevent the replacement?

All Replies (1)

Hi Bob, Firefox shouldn't force HTTPS for sites that don't support it.

There are a few cases where you cannot override HTTPS, including:

(1) The site requested to be on a list of sites browsers only connect to using HTTPS (HSTS preload list)

(2) Firefox previously visited the site using HTTPS and received instructions to always use HTTPS in the future (HSTS) -- I don't think this is port specific, so if it received this instruction on port 443 it could also affect port 8000


Otherwise, could it be an add-on like HTTPS Everywhere, or this experimental setting?

(1) In a new tab, type or paste about:config in the address bar and press Enter/Return. Click the button accepting the risk.

(2) In the search box in the page, type or paste https and pause while the list is filtered

(3) If the dom.security.https_only_mode preference is not set to false, double-click it to restore the default value of false

More info on about:config: Configuration Editor for Firefox.