Skip to main content
A
AnnShelbourne
Inspiring
March 15, 2020
Question

Non-secure Edgefonts Server causes browsers to block web sites

  • March 15, 2020
  • 2 replies
  • 1675 views

I have run into a bad problem when using Edgefonts.

 

They were originally installed through Dreamweaver onto my Macs with an unsecure http (without the "S") address as their source (instead of from the alternative secure "https://" source) and this is causing blocked access to my websites.

 

I have repeatedly removed the non-secure http version from my files but it persists in reinserting itself in my source code and I desperately need to know how to get rid of that code permanently although I do want to use this particular Edgefont on a web site which I am building.

 

This is the correct source:

<!--The following script tag downloads a font from the Adobe Edge Web Fonts server for use within the web page. We recommend that you do not modify it.--><script>var __adobewebfontsappname__="dreamweaver"</script>

<script src="https://use.edgefonts.net/source-sans-pro:n4,n6,i7,i2,n2:default.js" type="text/javascript"></script>.

 

The source which causes the trouble is the very similar, but thoroughly dangerous:

<script src="http://use.edgefonts.net/source-sans-pro:n4,n6,i7,i2,n2:default.js" type="text/javascript"></script>.

 

The http source needs to be permanently removed from Edgefonts' Servers immediately.

 

 

This topic has been closed for replies.

2 replies

Nancy OShea
Community Expert
Nancy OSheaCommunity Expert
Community Expert
March 15, 2020

Self-populating code could also be coming from a Library Item or a 3rd party extension.

 

Nancy O'Shea— Product User & Community Expert
A
AnnShelbourneAuthor
Inspiring
March 21, 2020

I have found the (several) causes and sources of the problem:

 

The fault primarily lies with Microsoft because browsers are seeing an underlying insecure "http" link to a Microsoft server even if the user is replacing it in the Edge Fonts Script with the alternative secure https address.

 

Contamination in my System was coming from several sources:

The Manage Fonts tool was hiding my previously downloaded link to an Edge Font  under its Check-mark symbol;

Templates which I had made included the unwanted MS Script;

and the TMP files were also capturing the unwanted Script and were perpetuating the problem every time that I tested my site through a Web Browser.

 

One huge problem was caused because I had uploaded a new site (on which I am currently working) to my web-hosting company's Server and both Firefox and Safari blocked my access to my own personal website because they perceived the server there to be "insecure".

 

I have now trashed all Templates; and all existing TMP files; and removed the link to Edge Fonts in the Manage Fonts tool and the unwanted re-insertion of the EdgeFonts script into my DW pages has now stopped.

 

The moral of the story seems to be to stay well away from using Edge Fonts until Microsoft can be persuaded to clean up their insecure Servers?

 

Nancy OShea
Community Expert
Nancy OSheaCommunity Expert
Community Expert
March 15, 2020

Are you using a Template to create your child pages?  Open your Template and check the source code for Edge fonts. 

 

Nancy O'Shea— Product User & Community Expert
Terms & ConditionsAccessibility statement
Using the community Terms of use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices