Mixed content blocking behavior in Firefox

Question

In Firefox version 23, mixed content blocking behavior is added.It means that Firefox has blocked content that is insecure on the page you\'re visiting.It shows the shield icon

Answer 1

You cannot turn this off remotely! Except in your own browser, of course.

That is: Your rails application cannot turn off mixed-content blocking in the browser.

This is a preference only a (skilled) user may change in her browser... But shouldn't in the age of Firesheep, etc.

Instead, you should make all your active content available via https.

Or downgrade to insecure http. Since you're essentially wanting to allow Man-In-The-Middle attacks anyway, because that's what mixed-content means, the result of using http in the first place wouldn't be that much different. The only difference would be that a MITM could stay passive in http-only, instead of having to actively modify data in https-mixed-mode. But, seriously, what percentage of your users would recognize an active MITM, who maybe even only runs a small targeted attack?

Answer 2

I think you are using firefox version below 23.0 my suggestion is to first upgrade and then proceed

First Uninstall and reinstall Firefox using Ubuntu software center.

New version of Firefox is available in Ubuntu software center

Reboot the system

your firefox will be upgraded to 23.0 version