Are there well known HTTP-only sites?

Question

Captive Wi-Fi portals suck.

Often when I open a HTTP site in a browser (desktop Chrome or mobile Chrome), I get the captive portal, but with auto-completion and so quickly I connect again to Wi-Fi.

The problem is that after the captive portal redirects, I'll have also a HTTPS redirect and Chrome remembers the certificate and to use only HTTPS. So I cannot use the same site twice (in a session).

A well-known public HTTP only site will resolve this. Well-known sites usually work, causing less debugging of the Wi-Fi connection.

score 66 · Accepted Answer · answered May 26 '17 at 12:50

A well-known public HTTP only site will resolve this

You can use http://neverssl.com:

What?

This website is for when you try to open Facebook, Google, Amazon, etc on a wifi network, and nothing happens. Type "http://neverssl.com" into your browser's url bar, and you'll be able to log on.

How?

neverssl.com will never use SSL (also known as TLS). No encryption, no strong authentication, no HSTS, no HTTP/2.0, just plain old unencrypted HTTP and forever stuck in the dark ages of internet security.

Why?

Normally, that's a bad idea. You should always use SSL and secure encryption when possible. In fact, it's such a bad idea that most websites are now using https by default.

And that's great, but it also means that if you're relying on poorly-behaved wifi networks, it can be hard to get online. Secure browsers and websites using https make it impossible for those wifi networks to send you to a login or payment page. Basically, those networks can't tap into your connection just like attackers can't. Modern browsers are so good that they can remember when a website supports encryption and even if you type in the website name, they'll use https.

And if the network never redirects you to this page, well as you can see, you're not missing much.

score 18 · Answer 2 · answered May 10 '23 at 15:40

18

Old thread, but here's another one: http://httpforever.com/

answered May 10 '23 at 15:40

CameronGo

181

score 13 · Answer 3 · edited May 01 '23 at 00:54

13

These answers came from the comments and I believe they need a separate entry in the answers so they can be easily found.

edited May 01 '23 at 00:54

dave_thompson_085

4,082

answered Apr 26 '22 at 04:37

Majal

1,048

score 11 · Answer 4 · answered Nov 11 '22 at 00:02

This website is for testing ssl: https://badssl.com/

It includes several subdomains that intentionally will never have ssl enabled, such as:

For some reason, when I tried http://neverssl.com, I was forwarded to a different website with SSL enabled: https://wholesilveryoungsecret.neverssl.com/online/. So it seems that it currently can't serve its one intended purpose.

badssl.com seems more reliable now.

jrc · Answer 5 · 2024-04-09T08:33:00.267

4

I use http://example.com (for manual occasional usage, nothing automated).

There's also http://httpbin.org.

edited Apr 09 '24 at 08:33

answered Sep 17 '23 at 11:24

jrc

180
5

Maciek Leks · Answer 6 · 2023-10-30T10:11:33.740

1

Well, why not this one:

home of the first website: http://info.cern.ch

I use this URL for all cases related to raw http protocol.

edited Oct 30 '23 at 10:11

answered Oct 28 '23 at 06:22

Maciek Leks

111
4

score 1 · Answer 7 · answered Aug 22 '24 at 08:39

1

Http webiste with also images on http: http://www.thelegacy.de/

answered Aug 22 '24 at 08:39

user956584

396

Are there well known HTTP-only sites?

7 Answers7

A well-known public HTTP only site will resolve this

http://google.com/generate_204

http://captive.apple.com/

http://detectportal.firefox.com/success.txt

Related