How Can I Force HTTPS At The User Level?
There's a way it can be done at the user level for those using Mozilla Firefox as their browser. It's an add-on called "NoScript." On Firefox if you go to <Tools><Add-ons> and search for "NoScript" you'll find it in version 2.3.9 which is the latest one.
NoScript is primarily a tool to control the Javascript on the websites you visit, but most importantly for our purposes, it has a feature that allows you to designate any website to force a HTTPS connection throughout. Once it's downloaded, you'll have to restart Firefox to activate it. You'll notice immediately that when you come onto World Truth (or any site) a warning bar will activate showing you a number of scripts that have been "forbidden." All you have to do is click on the options to review what scripts are being blocked and allow what you want. It's very straight-forward.
To configure the forced HTTPS function right click on the page. You'll see "NoScript" listed in the options. Mouse-over it and you'll see "Options." Click on that and it will bring up the options screen. Click on the "Advanced" tab and then just refer to this image. Of course, rather than "Facebook.com" you'd type in "WWW.Worldtruth.org" Make sure to use the "WWW" because it didn't want to work without it. One other difference is where it says "Always" under "Forbid active web content unless it comes from a secure (HTTPS) connection:" Do NOT change it to "Always" (as is shown), but make sure it's "Never," which is the default value.
This will force HTTPS across World Truth entirely and will significantly enhance the end-to-end security for you. In other words, you'll be completely encrypted across the web with your connection to World Truth and no one will be able to snoop on what you're typing, linking, etc.
You'll notice as you visit other sites you'll get the warning bar at the bottom of the browser if you're using Win7 (It may appear differently in Vista or XP). Exploring the "Options" once again will reveal to you just what scripts are trying to participate in your browsing. If you're comfortable with the site and the scripts you can simply allow them individually. I've noticed that in order to watch videos in some places you have to allow that function under options as well.
NoScript requires a bit more effort when browsing, but it puts you in better control of exactly what's going on in the background.
NoScript is primarily a tool to control the Javascript on the websites you visit, but most importantly for our purposes, it has a feature that allows you to designate any website to force a HTTPS connection throughout. Once it's downloaded, you'll have to restart Firefox to activate it. You'll notice immediately that when you come onto World Truth (or any site) a warning bar will activate showing you a number of scripts that have been "forbidden." All you have to do is click on the options to review what scripts are being blocked and allow what you want. It's very straight-forward.
To configure the forced HTTPS function right click on the page. You'll see "NoScript" listed in the options. Mouse-over it and you'll see "Options." Click on that and it will bring up the options screen. Click on the "Advanced" tab and then just refer to this image. Of course, rather than "Facebook.com" you'd type in "WWW.Worldtruth.org" Make sure to use the "WWW" because it didn't want to work without it. One other difference is where it says "Always" under "Forbid active web content unless it comes from a secure (HTTPS) connection:" Do NOT change it to "Always" (as is shown), but make sure it's "Never," which is the default value.
This will force HTTPS across World Truth entirely and will significantly enhance the end-to-end security for you. In other words, you'll be completely encrypted across the web with your connection to World Truth and no one will be able to snoop on what you're typing, linking, etc.
You'll notice as you visit other sites you'll get the warning bar at the bottom of the browser if you're using Win7 (It may appear differently in Vista or XP). Exploring the "Options" once again will reveal to you just what scripts are trying to participate in your browsing. If you're comfortable with the site and the scripts you can simply allow them individually. I've noticed that in order to watch videos in some places you have to allow that function under options as well.
NoScript requires a bit more effort when browsing, but it puts you in better control of exactly what's going on in the background.
11 people found this answer helpful.
English (US)