I have a perfict connection. enternet and good wifi. it says my connection to this web is insucure. something about my password. Any other place it will work.I can't play any games because all the loads stop at 100% and nothing happens. If a dev is reading plz help me out here

Yea. I don't really know what you are talking about. What leads you to believe that your password is acting up, or that your connection is insecure? If you are refering to your loading bar on games stopping at 100% but not actually loading anything, there is lots of things you can try (reinstalling Flash, turning off Adblocker, running a malware/adware scan, etc). Have you done any of these things? -Pip

Both Firefox and Chrome are listing your page as insecure.

> *Originally posted by **[Beerblog](/forums/7/topics/708457?page=1#11020466)**:* > Both Firefox and Chrome are listing your page as insecure. Thanks for this off topic information. However, what page, specifically, are you refering to? Is it a specific game? The main home page? All pages of Kongregate? I just opened this page and a few other Kong pages in both Firefox and Chrome and not no such notification. What about the page, specifically, do these browsers say is insecure? Are you sure you are not trying to put an https:// in front of the URL? If so, it shoudl not be there. -Pip

It's very much on topic as that's what the person was talking about. They clicked on the 'broken lock' and saw the message about how 'logins on this page could be compromised.' And it shows up regardless of whether you go to kongregate.com, www.kongregate.com or https://kongregate.com. ~~There's probably something wrong with your security certificate.~~ ~~Or at least for some regions.~~ Clicked through and it threw me to the [insecure passwords page](https://developer.mozilla.org/en-US/docs/Web/Security/Insecure_passwords).

> *Originally posted by **[Beerblog](/forums/7/topics/708457?page=1#11020574)**:* > It's very much on topic as that's what the person was talking about. They clicked on the 'broken lock' and say the message about how 'logins on this page could be compromised.' And it shows up regardless of whether you go to kongregate.com, www.kongregate.com or https://kongregate.com. > > There's probably something wrong with your security certificate. > > Or at least for some regions. Ah - ok. Thanks. I missed the part about how they were clicking on the broken lock (however I did see the part in the OP about how something was insecure (something about a password), but I guess I was more focused on the game not loading even after the bar gets to 100%. ~~I have no such broken lock, and when I check the page info, I see how the page (while viewing in https) is verified by GlobalSign (using 128 bit keys). The "lock" is green and present (when using https).~~ __Edit: See my post below for new information after looking at more pages.__ So I guess it is as you say, there might be some regional differences here. For the record, I am accessing Kongregate from the US. -Pip

I don't know what to tell you. I didn't have the error message yesterday. I have it today. I've tried moving around and checking different pages. I'm able to get a secure connection in some of the forums, but never on the main page. Just asked in chat in a room for animation throwdown (all users most likely on that page) and the results are 2 other users seeing insecure connections, no one reporting a secure connection.

I checked a few more pages, and see the kong main page does show a broken lock (the error you are talking about). The forum pages do not. The profile pages do not. Game pages seem to be hit or miss (some do and some do not... most that I cheched seem to have a broken lock). However, this error is not stopping me from playing the games (the OP said that the game never gets past the loading bar). That is not happening for me. I directed the admins to this thread for their attention. Hopfully it is a simple certificate error and it can be quickly fixed. I don't think this is causing the OP's problem of not being able to play games though (they seem to be two seperate issues). -Pip

That broken lock is not something kong can do anything about on existing game pages, kong relies heavily on iframes, if the iframe is not a https site, it'll be shown as insecure, a bunch of browsers have started showing regular http websites as insecure, also websites that are https but have http content (mixed content) will also be shown as insecure. The actual sign in on kong goes over https, i haven't actually looked at how specifically it's done, but i'm going to assume kong didn't drop the ball and is actually doing that correctly, the kred page is https also. Which means that your password and financials should be secure. The webpage or game pages themselves may not be, but is it really such a big deal that some flash game you're playing is hosted on a non-secure webpage (let's not get into cross site scripting)? I haven't looked into the kong chat, whether that's send as plain text or with tls or whatever. I'm going to assume pm's and forum posts are send in plain text, but i may just as wel be wrong. iframes are really nasty, at one point they were deprecated in xhtml, but xhtml 2 never came to be and instead html 5 is what's being used these days (though large swaths of this website are sooner html 4), as a result iframes are still around (alternatives to iframes were a lot more complex to implement too) and are a nice hazard to safe surfing. In short, you can be fairly certain that your pwd and $$ are safe, anything else may be open for grabs, if you want to be certain you have to check what functionality on each webpage you're using and whether that's send securely or not (for example hosted mmo's and what not). One of the reasons why browsers have started showing http as insecure, is to push more https on the web, if everything is https, there is no more ambiguity, but at the same time it also causes confusion as here, where people who haven't a clue how stuff works think everyting is insecure while the things that really matter actually aren't, but better to err on the side of caution if you haven't a clue how things work I suppose. I guess this is a case of badgering the website developers (certainly not just kong) into making things fully https. Going forward that is possible, but things that are present and hosted offsite, can't simply be converted, the alternative would be to ban any old http hosted iframes from kong, lord knows how many thousands of games that'd be. (ex. the recently badged naruto game is just a http iframe)