techvigil-logo

The Google Chrome browser often shows "insecure content" warning while opening any https page. This may be due to two reasons.

The first reason is called mixed scripting vulnerability that is caused when a page served over HTTPS loads a script, CSS, or plug-in resource over HTTP. So, in this case a man-in-the-middle attacker can typically intercept the HTTP resource load and gain full access to the website loading the resource. Google Chrome uses the cross-out red https in URL bar to show this type of vulnerability.

The second one is called mixed display vulnerability. This is caused when a page served over HTTPS loads an image, iFrame, or font over HTTP. In this case a man-in-the-middle attacker can intercept the HTTP resource load but normally can only affect the appearance of the page and not his else. Google Chrome uses a yellow exclamation lock in URL bar to show this type of vulnerability.

How to Fix it?

Whatever be the reason you can turn them off. But it doesn't solve the problem actually but just hide them from you.

To disable all these warnings, follow these three steps -

  • Right click on the Google Chrome shortcut icon and go to properties.
  • Add this string (without quotes) "--allow-running-insecure-content" in the last of target box.
  • Press Ok and restart Chrome to take affect the change.

Now you won't see that annoying yellow bar again.