jake11 wrote:
Safari 18.5 on Sequoia is regularly giving insecure warnings for secure website connections (ie. rbc.com or car.gc.ca). When I accept the warning, continue to render the page and check Safari (menu) -> Connection Security Details, it says the page is properly encrypted (valid certificates).
But what does the certificate actually say?
On my computer, rbc.com shows a certificate belonging to "rbcroyalbank.com" and "cra.gc.ca" shows "*.canada.ca". What do they say on yours?
Sometimes 3rd party "security" apps actually run a man-in-the-middle attack and invalidate the security on all secure sites. When they try this, highly secure sites like RBC or CRA might complain.
If I load the same pages in Firefox 139.0.4 (also running on Sequoia), I am not given any warning.
It's more likely that Safari is properly warning you and Firefox is not.
I'm at a loss to explain why Safari is providing these warnings. Is it a Safari bug? Is there a potential security risk being overlooked by Firefox?
It's almost certainly due to some 3rd party "security" app, some "privacy" app, or a "network filter". Such apps are extremely common and cause the vast majority of problems reported here on the forums.
That being said, what you are reporting is highly unusual. Don't believe what you see on the internet. For all you know, someone could be pretending to be from Apple support or something. 😉
I really miss the lock in the address bar. Any insight into this problem would be appreciated.
Me too. You can access this information from the Safari menu under "Connection security details".
