Troubleshooting Can no longer download Kindle books to my PC

[mahwak]

I have always downloaded my Kindle books to my pc (Windows 10) from Amazon's Content and Devices page with no problem, then transferred them to the Kindle via USB. All of the sudden, it goes through the motions, says it's downloading, but nothing downloads.

Any suggestions? I appreciate any help!

Thank you.

[j.p.s]

I suggest that you read this thread:
https://www.mobileread.com/forums/sh...d.php?t=335530

[mahwak]

I tried downloading from Microsoft Edge. It worked!

[Quoth]

https://blog.the-ebook-reader.com/20...-usb-transfer/

Google arrogance being copied by Mozilla. Edge is based on Google's Chrome now, so the real solution is:
On Chrome, click the lock icon next to Amazon’s web address while viewing Amazon’s website, then select Site Settings > Insecure content > Allow

Also Chrome is pretty much spyware and will soon block addons that protect you from malicious 3rd party scripts on the basis that it's blocking their adverts.

There is no moral or legal requirement to accept adverts and 3rd party scripts (even if Google Ads) are a common source of malware.

[shalym]

Quote:

Originally Posted by Quoth

https://blog.the-ebook-reader.com/20...-usb-transfer/

Google arrogance being copied by Mozilla. Edge is based on Google's Chrome now, so the real solution is:
On Chrome, click the lock icon next to Amazon’s web address while viewing Amazon’s website, then select Site Settings > Insecure content > Allow

Also Chrome is pretty much spyware and will soon block addons that protect you from malicious 3rd party scripts on the basis that it's blocking their adverts.

There is no moral or legal requirement to accept adverts and 3rd party scripts (even if Google Ads) are a common source of malware.

I wonder what version of Firefox this is happening with? I was just able to download 3 books from my Content and Devices page using Firefox 84 on Windows 10. Is anyone else having the problem when using Firefox?

Shari

[NullNix]

Quote:

Originally Posted by Quoth

https://blog.the-ebook-reader.com/20...-usb-transfer/

Google arrogance being copied by Mozilla. Edge is based on Google's Chrome now, so the real solution is:
On Chrome, click the lock icon next to Amazon’s web address while viewing Amazon’s website, then select Site Settings > Insecure content > Allow

Mixed content is an actual security risk: it's not called insecure for nothing. This is not "arrogance", it's only common sense -- if you're transferring a webpage via an encrypted channel (SSL/TLS), that page shouldn't be calling on unencrypted resources as part of the page load, because third parties can spy on your (unencrypted) requests for those resources in transit. This can and does leak state associated with the encrypted page!

There's a *reason* browsers are increasingly banning this. Amazon is at fault for using it -- if it is: I've just tried a download from amazon.co.uk's Manage Your Kindle page and it worked fine with mixed content blocked. Maybe this is yet another thing that varies by country.

[rcentros]

Quote:

Originally Posted by shalym

I wonder what version of Firefox this is happening with? I was just able to download 3 books from my Content and Devices page using Firefox 84 on Windows 10. Is anyone else having the problem when using Firefox?

Firefox 84 on Linux Mint 20 is still allowing book downloads from Amazon. (Just tested.) Also tested Vivaldi 3.5.xxxxxx (based on Chrome) and it still works. Don't know about Chrome, don't have it installed.

[Quoth]

Quote:

Originally Posted by NullNix

Mixed content is an actual security risk: it's not called insecure for nothing. This is not "arrogance", it's only common sense -- if you're transferring a webpage via an encrypted channel (SSL/TLS), that page shouldn't be calling on unencrypted resources as part of the page load, because third parties can spy on your (unencrypted) requests for those resources in transit. This can and does leak state associated with the encrypted page!

There's a *reason* browsers are increasingly banning this. Amazon is at fault for using it -- if it is: I've just tried a download from amazon.co.uk's Manage Your Kindle page and it worked fine with mixed content blocked. Maybe this is yet another thing that varies by country.

No, it's stupid and arrogant. There is a longer answer. The big issue is the javascript in 3rd party adverts, even ones brokered by Google. Not a Javascript that does the download. And Chrome doesn't block 3rd party malware laced javascript adverts. They even want to prevent you doing that.

Also if you use a public WiFi point the HTTPS can be spied on. The main issue needing HTTPS is logins and form filling, not downloads.
Which actually shouldn't be using javascript at all, but it's not Google's job to decide how the Internet works. Even if some of it makes sense.

[binaryhermit]

How exactly would HTTPS be spied upon on public wifi?

If the access point tried to MitM the connetction without having a root certificate in your OS or browser's certificate store, the browser would loudly complain if the site didn't have HSTS enabled or refuse to connect if it did

I hate to be that guy, but if you install a random root cert, then you kinda deserve it if you get your info stolen.

EDIT: Granted, the IPs you're accessing and DNS requests would be unencrypted (unless you're using DNS over TLS or DoH with a third-party DNS server) Perhaps the hostname you're connecting to as well, not sure exactly sure what the HTTPS handshake looks like.

[Quoth]

I used to do R&D for an ISP. I used a VPN when away from home A VPN server on our own home server in the attic, which is just an old PC with Linux and a UPS, which also powers the Router/Modems/Switches etc.

[haertig]

Amazon book downloads work fine for me using this Chromium release (Chromium is what Chrome is built from):

Version 86.0.4240.198 (Official Build) Built on Ubuntu , running on LinuxMint 18 (64-bit)

And in my settings, I have this:

Insecure content is blocked by default on secure sites

... and no sites are set to override this default setting. Yet, I can download an eBook from an Amazon HTTPS webpage just fine.

[haertig]

This is a good site to test if you have a DNS leak:

https://dnsleaktest.com/

Setting up your own VPN at home as Quoth mentioned above is good. If you're not technically up to doing this, an SSH tunnel can be used instead (SSH is usually easier to set up for most people, but you still need to know what you're doing to make your SSH server secure).

But watch for DNS leaks in your setup ... use the test site above to check for them. Google "SSH port forwarding" or "SSH tunnel" to find out how to set up tunneling. If you have a DNS leak, a middleman server will not be able to see WHAT you are downloading (it will be encrypted), but they can see WHERE you downloaded it from. To keep them from knowing the WHERE part, you need to verify that you do not have any DNS leaks.

[Quoth]

Quote:

Originally Posted by haertig

This is a good site to test if you have a DNS leak:
https://dnsleaktest.com/

Interesting to check on if the browser settings, PC settings or Router settings are providing DNS in the Browser. Normally the Router is using whatever settings the ISP has set.
If your DNS settings have been changed by malware (say in an advert), then even the simple test will show the server of a Middleman that simulates and passes through some sites to capture logins. Which DOES work on HTTPS.
Do change the default login of your Router so that Malware Javascript can't change the DNS settings.

Chrome might use Google for DNS so that Google can track when and what sites you access. Never use Google DNS if you care about privacy. Usually your own ISP (if you are in the EU, because USA ISPs can sell the info) is the most private DNS option.

Quote:

Originally Posted by haertig

Setting up your own VPN at home as Quoth mentioned above is good. If you're not technically up to doing this, an SSH tunnel can be used instead (SSH is usually easier to set up for most people, but you still need to know what you're doing to make your SSH server secure).

But only of use when you are NOT at home! Some Routers support setting up a VPN server, such as ones using OpenWRT.

[haertig]

Quote:

Originally Posted by Quoth

But only of use when you are NOT at home! Some Routers support setting up a VPN server, such as ones using OpenWRT.

I don't understand what you're getting at. If I'm home, I'm connected to my LAN directly. I don't need VPN. I do indeed use SSH at home all the time - bouncing from server to server over my LAN. I don't use SSH tunneling at home though (no need for it, just like no need for VPN). As a matter of fact, If you try to VPN to your home VPN while you are currently connected to your home LAN (the LAN that the VPN bridges/routes you to), you're going to have problems. At least with a routed VPN (I haven't tried this a bridged VPN). Your computers routing tables get all in a tizzy trying to figure out where packets should go - to the VPN or to the LAN. But there's no reason to try to VPN into a LAN that you are already connected to - except maybe to test a VPN setup or something.

My OpenVPN server is indeed set up on my main home router (which runs Tomato firmware). I connect all the time to this VPN when out and about. From my laptops, from my tablets, from my phones. This gives me the privacy/security I need if I join a WiFi network that I do not personally control (something I am loathe to do, but will do occasionally if really needed and I can bring up my VPN).

[Quoth]

You seem to understand exactly what I mean!