Opened 6 years ago

Closed 6 years ago

#8674 closed defect (fixed)

Installing HTTPS Everywhere + security.mixed_content.block_active_content breaks Youtube.com

Reported by: pjpii Owned by: pde
Priority: Medium Milestone:
Component: HTTPS Everywhere/EFF-HTTPS Everywhere Version: HTTPS-E 3.1.4
Severity: Keywords:
Cc: Actual Points:
Parent ID: #8774 Points:
Reviewer: Sponsor:

Description

Issue:
With "HTTPS Everywhere" installed and the Firefox setting "security.mixed_content.block_active_content" set to "true" all Flash videos on Youtube.com give the error "An error occurred. Please Try Again Later." This error persists ever after the "HTTPS Everywhere" extension is disabled, removed and/or all options effecting Youtube.com are disabled.

Steps to Reproduce:

  1. Create a new Firefox profile and start Firefox.
  2. Go to about:config and set "security.mixed_content.block_active_content" to "true".
  3. Install the "HTTPS Everywhere" (stable) extension.
  4. Visit Youtube.com and try to watch a video.

Expected Results:
Youtube video plays.

Actual Results:
All Flash-based videos return, "An error occurred. Please Try Again Later."

Tested Environment:
Windows 7 (x64)
Mozilla Firefox 20

Other:
Per Mozilla bug https://bugzilla.mozilla.org/show_bug.cgi?id=834836 , the option "security.mixed_content.block_active_content" will default to "true" as of Firefox 23.

Child Tickets

Change History (2)

comment:1 Changed 6 years ago by pde

Parent ID: #8774

comment:2 Changed 6 years ago by zyan

Resolution: fixed
Status: newclosed

This has been fixed in my branch of https-e 3.3.x by disabling mixed content rulesets based on value of that FF setting rather than FF version. See https://github.com/diracdeltas/https-everywhere/commit/76b218f63f1cac952d430a315c7f5a5ad8e719c8.

Note: See TracTickets for help on using tickets.