why https is crossed out?

why https is crossed out?

When the https portion of the URL in Chrome has a red line through it, there is a problem with the security of the site you are going to. To see exactly what the problem is, you need to click on the padlock and see the detailed connection info.

If you see green padlock, then you've established a secure connection with a trusted site, and do not need to worry about MITM attacks.

If you see yellow bang, then the connection is unencrypted, and subject to MITM attacks.

If you see grey padlock or red padlock, then either the connection is only partially encrypted or it's encrypted with a party that's not trusted (e.g., a self signed cert, name mismatch, or imposter). In these cases you may be subject to a MITM attack.

What is MITM attack?

With these last two, the level of exposure varies. It might be that the remote site is properly encrypted, but just happens to have a few "IMG SRC=http://..." tags that cause mixed content. That "mixed content" can be sniffed on the network. Or, it might be that you've gone to an impostor site "gooogle.com" instead of "google.com", and everything you send is encrypted but going to a malicious attacker. Or anywhere in between. The rule of thumb is, essentially, unless you understand why it's red, you shouldn't trust it.