Google Chrome To Bar HTTP File Downloads

This section is for web design related questions.
Forum rules
Please make yourself familiar with our rules and guidelines before posting.
Post Reply
Posts: 1786
Joined: Fri Nov 08, 2019 12:44 am
Latest blog post: Have You Read the Webmaster Guidelines Yourself?
Answers: 1
Reputation: 987
Location: Canada
Has thanked: 22 times
Been thanked: 113 times

Google Chrome To Bar HTTP File Downloads

Post by Accrete »

Even though this is an article is at ThreatPost web designers and web developers should be aware of this change coming in Chrome:
File downloads like images or executables may not be delivered over HTTPS – even if they are available from an HTTPS website.

Google Chrome will soon restrict certain files, like PDFs or executables, from being downloaded via an HTTP connection – even if they are loaded on HTTPS webpages.

HTTPS indicates that a website has an encrypted connection. When connecting to an HTTP website, browsers merely look up the IP address and send data over to it in clear text. When using an HTTPS website, on the other hand, the browser checks that it has a legitimate SSL certificate before sending data in encrypted form – preventing man-in-the-middle (MiTM) attacks and more.

With Chrome 68’s 2018 release, Google started to label HTTP websites with an “insecure” warning label in the navigation bar. However, just because websites use an HTTPS connection does not guarantee that they are safe from all threats. For example, phishing landing pages can easily make use of SSL certificates (and many do). Similarly, HTTPS websites can still serve up images, scripts or other file types that are downloaded using the less-secure HTTP connection...
Continued: Google Chrome To Bar HTTP File Downloads
February 7, 2020

Got your site(s) ready for this?
Yours truly,
Accrete Web Solutions

SEO troubleshooting and review services available. - Pm me.

Post Reply

Return to “Web Design and UX”

Who is online

Users browsing this forum: No members and 4 guests