When you enable HTTPS-Only Mode, Firefox tries to establish a fully secure connection to the website you are visiting.” “That’s why we have created HTTPS-Only Mode, which ensures that Firefox doesn’t make any insecure connections without your permission. “In light of the very high availability of HTTPS, we believe that it is time to let our users choose to always use HTTPS,” says Mozilla on its blog. Meanwhile, some countries and organizations block or otherwise degrade HTTPS traffic. However, many other websites still support only HTTP and the web is littered with legacy HTTP links that point to insecure versions of sites. Most websites already support HTTP-over-TLS (HTTPS), which creates a secure and encrypted connection between browser and website – unlike its predecessor, HTTP, which uses plaintext, leaving users vulnerable to eavesdropping or manipulator-in-the-middle (MiTM) attacks.Īccording to Google, all of the world’s top 100 websites work on HTTPS, and 97% default to it. Launched today (November 17), Firefox 83 also enhances user security, says Mozilla, by replacing part of the browser’s JavaScript engine. UPDATED Mozilla has added a HTTPS-Only Mode to the latest Firefox browser release in a bid to protect users from unencrypted web connections.
‘A great interim solution to pave the way for a future HTTPS-only web’