I use a site check tool that is flagging up prefetch code and saying it’s not happy.
Loading a resource using protocol relative URIs allow it to be requested over HTTP and opens the door for Man-on-the-side attacks. If a resource is available over SSL, then always use the https:// URI.
Example link below, others are fonts.googleapis.com and WordPress calls
<link rel='dns-prefetch' href='//www.google.com' />
IS it possible to stop the tool complaining by amending the example link above, to this
<link rel='dns-prefetch' href='https//www.google.com' />That is, Add https to the path?
I can’t pin down where this is inserted, the theme provider says Not me. I can’t track this down, can anyone suggest anything?
- The topic ‘Loads page resources using protocol relative URIs’ is closed to new replies.