/u/251758/crop57188cc9a5b50_cropped.png?f=community)
Mijn vraag
Bij mij bezoek aan Tweakers home page krijg ik een fout melding van zowel chrome (51.0.2704.84 m) als FF (47) dat mijn verbinding niet 100% veilig is.
Fout melding word veroorzaakt door Mixed Content.
Volgens mij is dit niet de bedoeling want ik zie het voor het eerst dus ga er van uit dat er iets fout gaat.
gr
Dejan
Dit is wat ik terug krijg in de console van Chrome.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/ext/i/2001095807.jpeg' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/ext/i/2001095807.jpeg'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/ext/i/2001122093.png' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/ext/i/2001122093.png'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/ext/i/2001104387.jpeg' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/ext/i/2001104387.jpeg'. This content should also be served over HTTPS.
VM164:214 Mixed Content: The page at 'https://tweakers.net/' was loaded over a secure connection, but contains a form which targets an insecure endpoint 'http://www.itbanen.nl/vacature/zoeken?utm_source=tweakers.net&utm_medium=widget&utm_campaign=tweakers_home'. This endpoint should be made available over a secure connection.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/vacature/logo/1583566/small' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/vacature/logo/1583566/small'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/vacature/logo/1467397/small' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/vacature/logo/1467397/small'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/vacature/logo/1195003/small' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/vacature/logo/1195003/small'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/vacature/logo/1433309/small' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/vacature/logo/1433309/small'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/vacature/logo/4942/small' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/vacature/logo/4942/small'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/ext/i/2001105265.jpeg' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/ext/i/2001105265.jpeg'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/ext/i/2001116743.png' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/ext/i/2001116743.png'. This content should also be served over HTTPS.
content.scripts.c.js:11 TableManager::findTables()
XHR finished loading: GET "https://tweakers.net/xmlhttp/xmlHttp.php?application=frontpage&type=refresh…%5D=20&types%5B%5D=21&display=aggregated&output=json&nocache=1465891111810".
XHR finished loading: GET "https://tweakers.net/xmlhttp/xmlHttp.php?application=frontpage&type=refresh…%5D=20&types%5B%5D=21&display=aggregated&output=json&nocache=1465891233087".
XHR finished loading: GET "https://tweakers.net/xmlhttp/xmlHttp.php?application=frontpage&type=refresh…%5D=20&types%5B%5D=21&display=aggregated&output=json&nocache=1465891354317".
Relevante software en hardware die ik gebruik
...
Wat ik al gevonden of geprobeerd heb
...
Bij mij bezoek aan Tweakers home page krijg ik een fout melding van zowel chrome (51.0.2704.84 m) als FF (47) dat mijn verbinding niet 100% veilig is.
Fout melding word veroorzaakt door Mixed Content.
Volgens mij is dit niet de bedoeling want ik zie het voor het eerst dus ga er van uit dat er iets fout gaat.
gr
Dejan
Dit is wat ik terug krijg in de console van Chrome.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/ext/i/2001095807.jpeg' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/ext/i/2001095807.jpeg'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/ext/i/2001122093.png' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/ext/i/2001122093.png'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/ext/i/2001104387.jpeg' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/ext/i/2001104387.jpeg'. This content should also be served over HTTPS.
VM164:214 Mixed Content: The page at 'https://tweakers.net/' was loaded over a secure connection, but contains a form which targets an insecure endpoint 'http://www.itbanen.nl/vacature/zoeken?utm_source=tweakers.net&utm_medium=widget&utm_campaign=tweakers_home'. This endpoint should be made available over a secure connection.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/vacature/logo/1583566/small' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/vacature/logo/1583566/small'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/vacature/logo/1467397/small' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/vacature/logo/1467397/small'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/vacature/logo/1195003/small' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/vacature/logo/1195003/small'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/vacature/logo/1433309/small' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/vacature/logo/1433309/small'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/vacature/logo/4942/small' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/vacature/logo/4942/small'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/ext/i/2001105265.jpeg' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/ext/i/2001105265.jpeg'. This content should also be served over HTTPS.
VM164:1 [Report Only] Refused to load the image 'http://ic.tweakimg.net/ext/i/2001116743.png' because it violates the following Content Security Policy directive: "default-src https: data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
VM164:1 Mixed Content: The page at 'https://tweakers.net/' was loaded over HTTPS, but requested an insecure image 'http://ic.tweakimg.net/ext/i/2001116743.png'. This content should also be served over HTTPS.
content.scripts.c.js:11 TableManager::findTables()
XHR finished loading: GET "https://tweakers.net/xmlhttp/xmlHttp.php?application=frontpage&type=refresh…%5D=20&types%5B%5D=21&display=aggregated&output=json&nocache=1465891111810".
XHR finished loading: GET "https://tweakers.net/xmlhttp/xmlHttp.php?application=frontpage&type=refresh…%5D=20&types%5B%5D=21&display=aggregated&output=json&nocache=1465891233087".
XHR finished loading: GET "https://tweakers.net/xmlhttp/xmlHttp.php?application=frontpage&type=refresh…%5D=20&types%5B%5D=21&display=aggregated&output=json&nocache=1465891354317".
Relevante software en hardware die ik gebruik
...
Wat ik al gevonden of geprobeerd heb
...
:strip_exif()/u/3333/pumpkin_avatar.gif?f=community){kind=avatar}
