Anyone else having this issue? When I go to login on Alphabay it is saying this connection is not secure. Logins here could be compromised.
Is it just me? I'm for sure not on a phishing link.
Tor Update - now saying alphabay login not secure?
Anyone else having this issue? When I go to login on Alphabay it is saying this connection is not secure. Logins here could be compromised.
Is it just me? I'm for sure not on a phishing link.
[1 Points] wombat2combat:
[5 Points] kyousaya4life:
A little while ago, Firefox started warning when you try to log in to a site over HTTP instead of HTTPS, because on the clearnet logging in over HTTP is insecure. Tor provides its own encryption for hidden services, so on .onion sites you don't need HTTPS for it to be secure, but they didn't think to disable the HTTP warning on .onion sites. This will probably be fixed soon, but in the mean time you're still secure, the warning is just shown in error.
[2 Points] portalworld999:
Same thing with me on HANSA, are we safe to log-in??
[1 Points] BitCloak:
Hello, dont worry about it as your connection to a Tor Hidden Service its already end-to-end encrypted. I see the same warnings around, on Tor Browser 7.0a4 since a while.
[1 Points] stilldogman:
it's a firefox update. nothing to worry about!
[1 Points] young_k:
The following will remove that warning from your firefox/TBB browser according to this page - worked on my updated TBB.
Open a new tab, paste about:config into the address bar and hit enter.
If you see the “This Might Void Your Warranty” page, click the blue “I accept the risk!” button. Understand we are manually modifying Firefox’s default settings.
In the Search box at the top, paste security.insecure_field_warning.contextual.enabled
Double click the setting to change it to “false”
The warning is only letting you know that there is no HTTPS support and you are logging into a site that requires a password (probably utilizes the "password" field identifier) - because the information is sent over Tor it IS encrypted and the "evil" exit-nodes do not pose a risk since it is a hidden service and no exit nodes are utilized.
Your password is no more at risk now than it was before, and it wasn't really at risk from what I understand about Tor and hidden services.
https://www.reddit.com/r/DarkNetMarkets/comments/6g0l97/reminder_you_hidden_service_connection_is_not/