Suped

How does Chrome blocking mixed content affect Salesforce Marketing Cloud email deliverability?

12 Marketer opinions2 Expert opinions4 Technical articles2 Resources

Summary

While Chrome's mixed content blocking primarily targets web pages (HTTPS pages loading HTTP resources), it indirectly impacts Salesforce Marketing Cloud (SFMC) email deliverability. Modern email clients are increasingly sensitive to mixed content, potentially displaying warnings or blocking content, especially from unknown senders. Ensuring HTTPS for all email assets (images, links, click-tracking domains) is crucial to avoid warnings and maintain good deliverability. Some clients use proxies to load images over HTTPS, but this isn't reliable. Best practices include using universal TLS links, securing the SFMC portfolio base URL, and following a detailed checklist to address potential mixed content issues within SFMC.

Key findings

  • Chrome's Web Focus: Chrome's mixed content blocking mainly affects web pages but influences how email clients handle content.
  • Email Client Sensitivity: Email clients are becoming stricter about mixed content, potentially impacting deliverability.
  • HTTPS is Key: Using HTTPS for all email elements is critical for avoiding warnings and maintaining deliverability.
  • SFMC Configuration: A secure SFMC portfolio base URL and a mixed-content checklist are crucial for compliance.
  • Proxy Issue: Relying on email client proxies for HTTPS image loading is not a best practice.

Key considerations

  • Secure All Assets: Transition all email assets (images, links, tracking) to HTTPS.
  • Update SFMC Settings: Verify and update the SFMC portfolio base URL to HTTPS.
  • SFMC Checklist: Follow a detailed checklist within SFMC to identify and resolve mixed content issues.
  • Test Email: Test emails in various clients to ensure proper rendering and identify potential mixed content warnings.
  • TLS Links: Ensure all endpoint links are wrapped in TLS for enhanced security.

What email marketers say
12Marketer opinions

While Chrome's mixed content blocking primarily targets web pages, it has implications for Salesforce Marketing Cloud (SFMC) email deliverability. Modern email clients, like Gmail, are increasingly sensitive to mixed content (HTTPS pages loading HTTP resources) and may display warnings or block content, especially if the sender is not in the recipient's address book. Using HTTPS for all images, links, and click-tracking domains is crucial for maintaining good deliverability and a positive user experience. Some email clients use proxies to load images over HTTPS, but relying on this is not a best practice. Ensuring universal TLS links is essential, and transitioning to HTTPS for all email assets is highly recommended as email clients become more stringent about security.

Key opinions

  • Browser Blocking: Chrome's mixed content blocking primarily affects web pages, but the underlying principles extend to email.
  • Email Client Sensitivity: Modern email clients are becoming more sensitive to mixed content, potentially impacting rendering and deliverability.
  • HTTPS Importance: Using HTTPS for all links, images, and tracking domains in emails is crucial for avoiding warnings and maintaining deliverability.
  • Proxy Reliance: Some email clients use proxies to load images over HTTPS, but relying on this is not a reliable solution.
  • TLS Endpoints: There is no excuse to not wrap all endpoint links in TLS these days.

Key considerations

  • Secure Assets: Transition all email assets, including images and links, to HTTPS.
  • Click Tracking: Ensure click-tracking domains are secured with HTTPS to avoid potential issues.
  • Email Client Testing: Test emails in various email clients to ensure proper rendering and identify any mixed content issues.
  • Sender Reputation: Pay attention to sender reputation, as email clients are more likely to flag mixed content from unknown senders.
  • Fallback Options: Provide fallback options for images that cannot be loaded securely.
Marketer view

Email marketer from Email on Acid says that while Chrome blocking of mixed content primarily affects websites, it's important to use HTTPS for images in emails to ensure they are displayed correctly in all email clients, not just those using proxies.

December 2023 - Email on Acid
Marketer view

Email marketer from Reddit advises ensuring all images and links use HTTPS to avoid mixed content warnings. They suggest this improves deliverability, especially as email clients become more security-conscious.

April 2023 - Reddit
Marketer view

Email marketer from Litmus says that while mixed content blocking mainly impacts web pages, email marketers should use HTTPS for all email assets as a best practice. Email clients are becoming more stringent about security, so using HTTPS helps ensure consistent rendering and deliverability.

February 2022 - Litmus
Marketer view

Email marketer from Email Vendor Selection says that transitioning to HTTPS for all images and links is a crucial step in ensuring email deliverability and a positive user experience. Email clients will treat unsecure emails as spam.

October 2021 - Email Vendor Selection
Marketer view

Email marketer from EmailGeeks points out that modern email clients, like Gmail, may complain about mixed content in messages, especially if the sender isn't in the address book. While not as critical as website issues, it's still important to ensure universal TLS links.

April 2021 - EmailGeeks
Marketer view

Marketer from Email Geeks explains that email clients like the Gmail web one don't like mixed content, especially if the sender is not in the address book. But, it's not as big a deal if it's just a tracking link that re-directs to TLS on the sender's site.

May 2023 - Email Geeks
Marketer view

Marketer from Email Geeks explains that mixed content warnings are about images loading over http, which doesn't impact links/click tracking in emails. Also, this issue won't appear in Gmail, Yahoo, AOL, or Outlook as they use proxies to load images over https.

October 2024 - Email Geeks
Marketer view

Email marketer from SparkPost recommends ensuring all images and links in emails are served over HTTPS. While Chrome’s blocking focuses on web pages, email clients are becoming more vigilant about security, and using HTTPS is a general best practice for deliverability.

November 2021 - SparkPost
Marketer view

Email marketer from EmailGeeks raises concerns about unsecured click tracking domains affecting deliverability due to mixed content warnings in Chrome. While the immediate impact on email might be lower, having an unsecured click tracking domain could still raise red flags.

July 2021 - EmailGeeks
Marketer view

Marketer from Email Geeks shares there's really no excuse for ESP not to be wrapping all of their endpoint links in TLS these days.

August 2022 - Email Geeks
Marketer view

Email marketer from Stack Overflow says Always use HTTPS for all URLs, including images and tracking links, to prevent mixed content errors and ensure deliverability. While Chrome's mixed content blocking primarily affects web pages, email clients increasingly favor secure content, making HTTPS a best practice.

July 2023 - Stack Overflow
Marketer view

Email marketer from Mailjet stresses that using HTTPS for all links and images in your emails is crucial for maintaining good deliverability. Although Chrome's blocking primarily targets web pages, email clients are increasingly sensitive to security, making HTTPS essential.

March 2022 - Mailjet

What the experts say
2Expert opinions

Chrome's mixed content blocking, while primarily focused on web pages, can indirectly affect Salesforce Marketing Cloud (SFMC) email deliverability. Ensuring HTTPS for images and other email assets is crucial, as email clients may block or warn users about insecure content, thereby reducing engagement. Within SFMC, a detailed checklist can help address potential mixed content issues, including verifying the portfolio base URL, updating landing pages, securing Cloud Pages, and ensuring all images and links within emails are served over HTTPS.

Key opinions

  • Chrome Impact: While primarily a web issue, Chrome's blocking principles extend to how email clients handle mixed content.
  • Deliverability Impact: Insecure content can lead to email client warnings or blocking, negatively impacting engagement and deliverability.
  • SFMC Checklist: A detailed SFMC checklist helps identify and resolve potential mixed content issues.

Key considerations

  • Secure SFMC Setup: Verify the portfolio base URL in SFMC Account Settings is HTTPS.
  • Update Landing Pages: Convert old-style landing pages to Cloud Pages and ensure all landing pages are served over HTTPS.
  • Secure Cloud Pages: Ensure no links point to HTTP versions of Cloud Pages.
  • HTTPS Assets: Ensure all images and links in emails are served over HTTPS.
  • General HTTPS: Adopt HTTPS for ALL images and links in emails.
Expert view

Expert from Email Geeks provides a detailed checklist for potential mixed content issues in SFMC: (1) Account Settings - look for a portfolio base that's https. (2) Landing Pages - update/convert old style pages to cloudpages. (3) Cloud Pages - ensure no links point to http versions. (4) Landing Pages/Cloud Page - ensure all images are https. (5) Hand-coded emails - ensure all images are https and upgrade http links to https if available.

February 2023 - Email Geeks
Expert view

Expert from Word to the Wise explains that while Chrome's mixed content blocking primarily targets web pages, it's crucial to use HTTPS for images in emails to maintain deliverability. Email clients may block or warn users about insecure content, impacting engagement.

January 2023 - Word to the Wise

What the documentation says
4Technical articles

Chrome blocks mixed content (loading HTTP resources on HTTPS pages) to protect users from security vulnerabilities. While the primary focus is on web pages, this practice extends to email through email clients. Salesforce Marketing Cloud (SFMC) documentation emphasizes the importance of using HTTPS for all hosted content (images, landing pages) and securing the portfolio base URL to prevent mixed content warnings. Google and Mozilla documentation further highlight the broader push towards HTTPS for all web resources, underscoring the importance of serving secure content.

Key findings

  • Mixed Content Definition: Mixed content occurs when HTTPS pages load HTTP resources.
  • Browser Blocking: Chrome actively blocks mixed content to protect users.
  • SFMC Impact: In SFMC, mixed content primarily affects images and landing pages, but insecure links can trigger warnings.
  • HTTPS Importance: Using HTTPS for all hosted content (images, landing pages) is crucial in SFMC.
  • Portfolio Base URL: A secure HTTPS portfolio base URL in SFMC Account Settings is essential.

Key considerations

  • Secure Portfolio: Ensure the SFMC portfolio base URL is HTTPS.
  • HTTPS Assets: Serve all images and landing pages over HTTPS.
  • Address Insecure Links: Identify and update any insecure (HTTP) links in email content.
  • General Security: Understand that the push towards HTTPS is a broader web security trend.
Technical article

Documentation from SFMC explains the importance of having a secure (HTTPS) portfolio base URL in Account Settings. This ensures that all hosted content, including images and landing pages, is served over HTTPS, preventing mixed content warnings.

February 2022 - Salesforce
Technical article

Documentation from Mozilla Developer Network defines mixed content as when HTTPS sites load HTTP resources. Modern browsers block mixed content to protect users from security vulnerabilities. While focused on web development, it explains the underlying reason for Chrome's behavior, which can extend to how email clients handle content.

March 2023 - Mozilla Developer Network
Technical article

Documentation from Salesforce Help explains that mixed content warnings occur when a secure (HTTPS) page loads insecure (HTTP) resources. Chrome and other browsers block this mixed content to protect users. In SFMC, this primarily affects images and landing pages. Email content is less directly impacted, but insecure links can still trigger warnings.

March 2025 - Salesforce Help
Technical article

Documentation from Google Developers explains that Chrome actively blocks mixed content to improve web security. This blocking affects various resource types, including images, scripts, and stylesheets. Though not explicitly focused on email, it highlights the broader push towards HTTPS and secure resources.

July 2022 - Google Developers

Related resources
2Resources

How Salesforce Marketing Cloud (SFMC) Integrates with Litmus ...
How Salesforce Marketing Cloud (SFMC) Integrates with Litmus ...

Seamlessly integrate the Salesforce marketing cloud (SFMC) with Litmus. Learn how the integration works so you can optimize your campaigns today. Read now!

Litmus
Dark Mode Email: Your Ultimate How-to Guide - Litmus
Dark Mode Email: Your Ultimate How-to Guide - Litmus

Read answers to FAQs around Dark Mode email, view code snippets, learn about different tools and tips, & download an all-encompassing "Dark Mode email" toolkit!

Litmus

Related questions