Following Google's announcement of Chrome, the Mozilla Foundation is preparing from Firefox 60 and all newer versions of the browser, two new options that will mark HTTP sites as "unsafe" in the browser's address bar.
It's obvious that the HTTPS protocol is being promoted across the web, and that the major browser manufacturers support the idea.
As mentioned earlier, Google announced this week that it intends to point out that all HTTP sites are unsafe by Chrome 68. The browser is scheduled to be released in the middle of 2018.
At the moment, it is not clear when Firefox will begin to point out HTTP web pages as unsafe, but we know that from the 60 version of Firefox will bring two options that will help this functionality.
Note that Firefox 60 will be the next version of ESR (from Extended Support Release)
Below you will see how to configure these options (Firefox 60 or later version required):
Open the inner page:
about:config?=security.insecure_connection_text.enabled
Double-click to enable it.
Open the inner page:
about:config?=security.insecure_connection_text.pbmode.enabled
Double-click to enable it.
These settings will add the "not secure" flag to web pages that use the HTTP protocol.
The pbmode.enabled setting will add the same flag to display "not secure" on pages using HTTP in private browsing mode.
Adoption of the HTTPS protocol is expected to improve greatly in 2018, and one reason is that browser manufacturers will finally begin to label HTTP pages as "unsafe".
So all website owners who want to have a decent and secure page should adopt the HTTPS.