On Fri, Aug 30, 2013 at 7:13 AM, Neil Harris neil@tonal.clara.co.uk wrote:
On 30/08/13 14:17, Brion Vibber wrote:
What browser are you using? Works for me in Firefox 23.0.1 and Chrome 29.0.1547.62 on OS X 10.8.
Firefox 24.0 beta 6, running on Debian Linux 6.0.
I wonder if this may involve some tighter checking on same-origin etc. in Firefox 24. If so, this may be an early warning of possible problems when Firefox push 24.0 out to the wide world in a few weeks' time.
Looking it up... Per < https://developer.mozilla.org/en-US/docs/Security/MixedContent%3E the default block on mixed HTTPS/HTTP content was added in Firefox 23, so it might just be that HTTPS Everywhere is activating even when I've got it disabled and silently 'fixing' it for me. :)
I can confirm the load fail on my Windows box which has a fresher Firefox 23 installation.
I'll go check this on some other browser/OS combinations.
IE 10 also shows a warning, though you can click through to show the hidden content. Safari seems to pass it through.
I definitely recommend fixing the geohack page to work properly over SSL...
-- brion