Came across a bug in Firefox on a HTTPS host, where by if you reference a CSS file (i.e. through a link rel tag) that doesn’t exist, you’ll get a ‘partially unauthorised content’ message (i.e. cross through your padlock).

Whats interesting is that in IE6, the non-existant file it still treated as safe.

So which is the correct behavior? I would say Firefox.