Savedbutfragile's profile

New Poster

 • 

1 Message

Mon, Jan 4, 2021 6:00 PM

Not secured site

why is when when I logged into Xfinity emails the https indicates sit is not a secure line. I have had some personal messege regarding health appointments, and I would lkie to think this private. I understands have complained about this issue this year. Has anything been done-anyone know?

 

Responses

BruceW

Gold Problem Solver

 • 

22.4K Messages

5 m ago

If you are asking about webmail ( https://connect.xfinity.com/ ) the warning is generated by your web browser and is due to the way most current browsers are designed and the content of the emails you view.

 

Whenever you use any provider's webmail to open an email that references a non-secure (loaded with "http" instead of "https") image, script, or other item, the browser warns you. In webmail, this probably happens most often if you have the setting for "Allow pre-loading of externally linked images" (gear icon / Email Settings / Security / Mail) checked. If you don't have that option checked, you're probably getting the browser warning when you open an email that has insecure content and you click the "Show images" button.


A secure web page that loads insecure content is said to be using "mixed content", and may be subject to a "man-in-the-middle" attack. Comcast seems to think this is not a problem, but Internet security experts think otherwise. See https://www.google.com/search?q=mixed+content+pages+MITM.

 

New to the Community?

Start Here