This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Support
Support
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Allow "literal" links

SenexDemens
New member
‎06-23-2024 03:29 AM
Status: New idea

This is based on the experience of not being able to download a pdf file

http://www.satcompetition.org/2011/rules.pdf behind a http:// link because the http:// automatically redirects to the nonexistent https:// link.

There are very many tips of how to deal with that issue, but its complicated and didn't work in my case.

My suggestion would be to easily and temporarily deactive the redirection by providing a means to decalare a link as to be taken "literally", possibly resulting in a dialog with some words of warning.

Maybe prepending the address with something in the vein of "no_https!:http://www.satcompetition.org/2011/rules.pdf "  would be an idea

Comment
2 Comments
Status changed to: New idea
Jon
Community Manager
Community Manager
‎06-23-2024 06:39 AM
‎06-23-2024 06:39 AM

Thanks for submitting an idea to the Mozilla Connect community! Your idea is now open to votes (aka kudos) and comments.

cwilby
New member
‎06-23-2024 09:05 AM
‎06-23-2024 09:05 AM

I like the text approach.  I can see how having a button would be too "implicit" an action that can too easily be exploited in a MITM style attack.   With that, here are some "unsaids":

1. It should not be possible to craft a link using this proposed style.

<a href="no_https!:http://www.satcompetition.org/2011/rules.pdf"> Click me for prizes! </a>

 

2. It should probably still come with a security warning the first time it is used, to prevent social engineering attacks that absolutely happen in a large number of organizations.

> Prefixing a URL with no_https!: will explicitly open an insecure version of this link.  You should not use this feature if you are unfamiliar with it's use. Are you sure you want to continue?

Copyright © 2024 Khoros, LLC