I need exact and clear instructions on how to keep brave from forcing http to https
Have you tried to go to Settings → Shields and there setting “Upgrade Connections to HTTPS” = Disabled ? This should normally stop Brave from upgrading HTTP connections to HTTPS (at least for me it worked).
@kimbareidaho Before going into an answer, let me ask:
Why would you want to disable HTTPS? Except for extremely rare occasions where it doesn’t work, it’s the more safe and secure way to connect. Just going through HTTP allows others to intercept information between you and the site.
As to how to prevent it from changing, it all depends on which level of protection you want and if you want it globally or per site.
Global Settings
If you go to Settings → Shields, which is also just brave://settings/shields
you’ll see an option that says Upgrade connections to HTTPS
. There are three settings for this:
-
Strict
-
Standard
-
Disabled.
- If you choose
Strict
, it won’t load any websites unless it is HTTPS. If something is unable to load in HTTPS, then it will give you a warning prompt where you can continue in HTTP, such as below:
- If you choose
Standard
, it will attempt to upgrade to HTTPS if possible. If there’s no way to upgrade to HTTPS, it will open in HTTP, such as it did with the same site in example:
- If you choose
Disabled
then you would have no protection at all and it will load sites as they are natively programmed.
Site Settings
The secondary way is site settings. This will override the global settings for each individual site. To access this, you click on the Shields lion icon that appears on your address bar. Your options will be like below:
All are the same as before, but phrased differently. Again, the changes here will be for the one site only. Such as maybe if you’re trying to access your modem and it won’t let you do it with HTTPS. At that point you would switch to say Don't upgrade HTTP connections
or just go with the simpler Upgrade connections to HTTPS
and that would only be active when accessing the modem, but the protection would exist otherwise on all other sites.
To rehash my initial question
I’m not sure your level of awareness, so am partially sharing for you. But even assuming you know this, want to share for anyone else who might see the answer and is unaware
The difference between HTTP and HTTPS is the S
, which stands for Secure
. It keeps things encrypted and makes it harder for hackers or others to get your username, password, and any other data that is being sent from your device to websites.
Generally you want to avoid HTTP as much as possible, especially if it’s something where you’re sharing personal information.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.