How to Fix the Secure (Https) Connection Flaw in Facebook After Visiting an Unsecure (Http) Page

Last week we covered how to setup secure browsing (HTTPS) in Facebook. There’s a flaw in this system though that you may not be aware of. Here we’ll show you the flaw and how to correct it.

1. So you set up secure Browsing (Https) in Facebook to help protect against bad guys running packet sniffing apps like Firesheep over a public Wi-Fi network. When you check the box Browse Facebook on a secure connection (https) whenever possible you think your always protected right? Not necessarily.

sshot-2011-02-12-[16-08-07]

2. Unfortunately there’s a flaw in the system. When you visit a page or app on Facebook that requires a regular (http) connection, it switches your entire account connection back to the unsecure (http). If you browse to an app or page that is unsecure, you’ll see the following message. At least Facebook gives you a warning…if you want to visit the page, click Continue.

sshot-2011-02-12-[16-09-40]

3. Like in this example where we want to connect to NetworkedBlogs.

sshot-2011-02-12-[16-14-09]

4. Here’s where the problem is. If you log out of your account, and sign back in, you’ll notice you’re no longer protected by a secure (https) connection! What? You though you checked a box saying use HTTPS Whenever possible. And the message advising you need to switch to a regular (http) connection doesn’t say you’ll lose your secure connection after visiting a non-secure site…very annoying.

sshot-2011-02-12-[16-26-26]

5. So what you’ll need to do is go back into your Account Settings.

sshot-2011-02-12-[16-34-21]

6. Under Account Security click on Change.

sshot-2011-02-12-[16-34-51]

7. Then check the box next to Browse Facebook on a secure connection (https) whenever possible again to re-enable the setting…make sure to click the Save button.

sshot-2011-02-12-[16-37-42]

8. Now you’re back to a secure (https) connection.

sshot-2011-02-12-[16-41-09]

So, keep in mind that if you visit a page that isn’t on secure (https) that you double check your settings and re-enable the secure connection settings again. Hopefully Facebook figures out a way to fix this annoying issue soon.


Home » Facebook » How to Fix the Secure (Https) Connection Flaw in Facebook After Visiting an Unsecure (Http) Page

28 thoughts on “How to Fix the Secure (Https) Connection Flaw in Facebook After Visiting an Unsecure (Http) Page”

  1. Can any Body help me I putted my friend`s mobile number in my facebook account, facebook as security then he Lost his mobile when I try to log my Facebook account It ask me to sent code to that number and enter below but I haven`t I try so many times eventuality they sent me letter in my hotmail account they said u have to submit ur ID but I don`t know what is Id and it submitting

    1. just go into your fb account from a different different fb account …say from a freinds fb account… then in ur account go to ur profile just check in the contact information…u will see ur email ..the fb email id..

  2. never mind. i removed my old bookmark and replaced it with a new https and put on bookmark bar like “hope it helps” suggested. it worked. (Chrome)

  3. it disables me when i haven’t switched to an app…and tells me to log out and back in again to restore the https… but when i do that…it stays unsecured…in security section it never asks me to choose my method of browsing…anymore…only to log out and in again. ?????

  4. I would like to switch back to the non-secure http and cannot. When I try to visit another page I get the pop up that says click to continue in unsecured…..I click continue and it just keep popping up and will not let me progress. Any help would be appreciated. Ty

  5. I would like to switch back to the non-secure http and cannot. When I try to visit another page I get the pop up that says click to continue in unsecured…..I click continue and it just keep popping up and will not let me progress. Any help would be appreciated. Ty

  6. Marcia Cecilia Preuss

    How can l go back to non-secure browsing????The secure browsing(https) is messing up my games, l cannot play anymore….please help

  7. I want to switch back to non-secure and leave it but it won’t let me. Why and how can i go back to the old way?? please help me before I quit facebook all together.

  8. Thank you so very much, I really thought I was losing my mind and really just took a chance when searching for an answer but when I did this site was on the search page and well it did make my day, thank you for sharing this…

  9. I just gave up after the first time it switched me over. I visit outside pages quite regularly (games, networked blogs, etc.) and it’s just not worth it to me to have to constantly switch the security back on every time.

  10. Pingback: Help Keep Your Browsing Secure in Firefox – Simple Help

  11. @uniquefreakgirl: No problem. I guess it’s not really “a fix” but more of a work around…heh… really just an annoyance. It would be nice to see Facebook fix this problem soon though.

  12. THANK YOU SOOOOOOOOO MUCH!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
    OMG,I HAD THE SAME PROBLEM AND I COULDN’T LOG INTO MY FAV GAMES!
    OMG,OMG,OMG,OMG…THANK YOU SO DARN MUCH!

Leave a Comment

Your email address will not be published. Required fields are marked *