Secure Your Web Browser with HTTPS Everywhere

HTTPS Everywhere is an extension that encrypts your communications with many major websites, making your browsing more secure. It is a free and open source web browser extension for Google Chrome, Mozilla Firefox and Opera, created by a collaboration by The Tor Project and the Electronic Frontier Foundation (EFF). It automatically makes websites use the more secure HTTPS connection instead of HTTP, if they support it.

https-everywhere2

The code in part is based on NoScript’s HTTP Strict Transport Security implementation, but HTTPS Everywhere is intended to be simpler to use than NoScript. The EFF provides information for users on how to add HTTPS rulesets to HTTPS Everywhere, and information on which websites support HTTPS.

You can find the FREE HTTPS Everywhere extension for your web browser(s) at https://www.eff.org/https-everywhere/development.

2 thoughts on “Secure Your Web Browser with HTTPS Everywhere

  1. https everywhere does not seem to work with slimjet i activate it and no pages come up or i am to inpatient to wait. can this be fixed? i also have chrome browser on same computer and works fine there when i switch to slimjet i have to disable https everywhere why?

    Like

    • —> when i switch to slimjet i have to disable https everywhere why?

      Two possible answers. I bet it is a mix of both:

      1. There could be a problem in https everywhere with certain browsers. Perform a search on any search engine for:

      “https everywhere” problems

      That will show you a long list of documented problems with https everywhere. It is not a bug-free product.

      2. Not all web sites use or need SSL encryption, also known as https. The rule is that sites that collect any personal information (credit card numbers, bank account information, street addresses, and similar info) must use SSL or https encryption, at least on the web pages that collect that information, even if they do not use SSL or https on the other pages of the site. Tens of thousands of web sites, including this one, do not collect any sensitive personal information about you and therefore have no need for an SSL certificate that makes https work.

      SSL certificates are still a bit expensive although a lot cheaper than they used to be. Still, if the web site owner doesn’t need one, why spend the money? However, if the web site owner doesn’t spend the money and doesn’t go through the somewhat complicated method of installing a certificate, the site won’t be able to perform https and the https everywhere software will block all access to it. That’s a good thing for financial sites, such as your bank, but is it really necessary for web sites about your son’s Cub Scout troop or your bowling league?

      (I’m picking on extremely obvious examples here but similar questions should be asked of all web sites. For instance, I will suggest that a web site that provides information about privacy but never asks you for any of YOUR private information doesn’t have much need for an SSL certificate.)

      Like

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s