Firefox Websocket安全问题 [英] Firefox Websocket security issue

问题描述

我们在一个Linode盒子上安装了一个8080端口上的websocket服务器。 Chrome和Opera工作得很好。然而，Firefox却抱怨说这个操作是不安全的。

操作不安全：代码18

如果我尝试在页面加载之前在Web控制台中创建一个新的WebSocket对象一切都很好。然而，页面加载后有东西是螺丝钉，然后我不能创建对象了。请参阅附件截图。

我不知道什么操作是不安全的，甚至不知道如何去诊断这个。

解决方案

我解决了这个问题。该应用程序本身是在SSL下，但被访问的websocket不是。 Chrome和Opera并不关心Firefox，根据：

https：//bugzilla.mozilla。 org / show_bug.cgi？id = 303952

这是已知的，不被视为一个错误。 Mozilla的回应：wontfix

解决方案，将websocket服务器放在SSL下并使用wss：//

We have a websocket server on port 8080 setup on a Linode box. Chrome and Opera work just fine. Firefox however complains that the operation is insecure.

"The operation is insecure: Code 18"

If I try to create a new WebSocket object in the web console before the page is loaded everything is fine. However, after the page loads something is screwy then I cannot create the object anymore. See the attached screenshot.

I have no idea what operation is insecure or even how to go about diagnosing this.

解决方案

I fixed this. The app itself is under SSL but the websocket being accessed is not. Chrome and Opera don't care but Firefox does. According to:

https://bugzilla.mozilla.org/show_bug.cgi?id=303952

This is known and is not considered a bug. Mozilla's response: wontfix

Solution, put websocket server under SSL and use wss://

这篇关于Firefox Websocket安全问题的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！