Re: [OT] SSL security in browser

This WebDNA talk-list message is from

2005


It keeps the original formatting.
numero = 63179
interpreted = N
texte = On a SECURE page: Links to other pages can be either HTTP or HTTPS. Images must be HTTPS or relative (according to the rules but fiddle with this) I have made all css & js relative Am pulling my hair out over the Flash thing, will have to convert all to gif rollovers so that everyone who visits the site doesn't have to change their settings. Have a look through our new development: http://www.opsmdirect.com.au Stuart Tremain idfk web developments, sydney, australia On 04 Oct 2005, at 12:25 PM, WJ Starck wrote: > One more question: > > When I had a link on an SSL page back to a non-SSL page, I keep all > the links https so they don't have to have that annoying ssl/non > ssl dialogue popping up all the time. > > Could this be the problem? Because on the non SSl pages, the images > are all relative links. > > ??? > > -Will > > > On Oct 3, 2005, at 9:17 PM, Stuart Tremain wrote: > > >> Will >> >> I just had a look at the page you had as a link, one of the images >> appear as a relative link not absolute. >> >> Images/novasplash.gif >> >> >> >> >> Stuart Tremain >> idfk web developments, sydney, australia >> >> >> On 04 Oct 2005, at 12:00 PM, WJ Starck wrote: >> >> >> >>> Thanks Stuart- >>> >>> I don't believe it's the images. I use absolute urls for them >>> all, eg.: >>> >>> https://secure.novaderm.com/Images/image.jpg >>> >>> This is correct, no? >>> >>> Now, all the images are actually in the non 443 virtual >>> directory, and I have the DocumentRoot for the ssl side pointed >>> there. >>> >>> Also, this is scary: >>> >>> SYMPTOMS >>> >>> When you view a secure Web site that runs a Java script or uses >>> Dynamic Hypertext Markup Language (HTML), the Secure Lock >>> indicator may not be displayed on the Internet Explorer status bar. >>> CAUSE >>> >>> This behavior can occur if an HTML Anchor tag on the Web site >>> specifies a protocol that Internet Explorer does not recognize as >>> a secure protocol. For example, Internet Explorer does not >>> recognize JavaScript as a secure protocol. Therefore, the Secure >>> Lock indicator is removed from the status bar when the following >>> HTML Anchor tag is rendered: >>> Click Here to Submit >>> Form >>> >>> WTF- no javascript now (this page uses a javascript for a pulldown)? >>> >>> -Will >>> >>> >>> On Oct 3, 2005, at 6:30 PM, Stuart Tremain wrote: >>> >>> >>> >>> >>>> Also these >>>> http://support.microsoft.com/support/kb/articles/Q154/6/21.asp >>>> >>>> http://support.microsoft.com/support/kb/articles/Q179/5/92.ASP >>>> >>>> >>>> >>>> Stuart Tremain >>>> idfk web developments, sydney, australia >>>> >>>> >>>> On 04 Oct 2005, at 8:37 AM, WJ Starck wrote: >>>> >>>> >>>> >>>> >>>> >>>>> Hello all- >>>>> >>>>> I've had several customers mention recently that the security >>>>> icon in IE is showing that our site is not secure. I can't seem >>>>> to replicate it here. >>>>> >>>>> If any of you have spare time on your hands ;) >>>>> >>>>> would you mind hitting https://secure.novaderm.com/ >>>>> checkorder.html and reporting back? >>>>> >>>>> Any tips on tracking this one down appreciated >>>>> >>>>> Thanks, >>>>> >>>>> -Will >>>>> >>>>> ------------------------------------------------------------- >>>>> This message is sent to you because you are subscribed to >>>>> the mailing list . >>>>> To unsubscribe, E-mail to: >>>>> To switch to the DIGEST mode, E-mail to >>>> digest@talk.smithmicro.com> >>>>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>>>> >>>>> >>>>> >>>>> >>>>> >>>> >>>> >>>> ------------------------------------------------------------- >>>> This message is sent to you because you are subscribed to >>>> the mailing list . >>>> To unsubscribe, E-mail to: >>>> To switch to the DIGEST mode, E-mail to >>> digest@talk.smithmicro.com> >>>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>>> >>>> >>>> >>>> >>> >>> >>> ------------------------------------------------------------- >>> This message is sent to you because you are subscribed to >>> the mailing list . >>> To unsubscribe, E-mail to: >>> To switch to the DIGEST mode, E-mail to >> digest@talk.smithmicro.com> >>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>> >>> >>> >> >> >> ------------------------------------------------------------- >> This message is sent to you because you are subscribed to >> the mailing list . >> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to > digest@talk.smithmicro.com> >> Web Archive of this list is at: http://webdna.smithmicro.com/ >> >> > > > ------------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to digest@talk.smithmicro.com> > Web Archive of this list is at: http://webdna.smithmicro.com/ > ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  2. Re: [OT] SSL security in browser ( "Will Starck" 2005)
  3. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  4. Re: [OT] SSL security in browser ( WJ Starck 2005)
  5. Re: [OT] SSL security in browser ( WJ Starck 2005)
  6. Re: [OT] SSL security in browser ( WJ Starck 2005)
  7. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  8. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  9. Re: [OT] SSL security in browser ( WJ Starck 2005)
  10. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  11. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  12. Re: [OT] SSL security in browser ( "WebDNA Talk-List Admin" 2005)
  13. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  14. [OT] SSL security in browser ( WJ Starck 2005)
On a SECURE page: Links to other pages can be either HTTP or HTTPS. Images must be HTTPS or relative (according to the rules but fiddle with this) I have made all css & js relative Am pulling my hair out over the Flash thing, will have to convert all to gif rollovers so that everyone who visits the site doesn't have to change their settings. Have a look through our new development: http://www.opsmdirect.com.au Stuart Tremain idfk web developments, sydney, australia On 04 Oct 2005, at 12:25 PM, WJ Starck wrote: > One more question: > > When I had a link on an SSL page back to a non-SSL page, I keep all > the links https so they don't have to have that annoying ssl/non > ssl dialogue popping up all the time. > > Could this be the problem? Because on the non SSl pages, the images > are all relative links. > > ??? > > -Will > > > On Oct 3, 2005, at 9:17 PM, Stuart Tremain wrote: > > >> Will >> >> I just had a look at the page you had as a link, one of the images >> appear as a relative link not absolute. >> >> Images/novasplash.gif >> >> >> >> >> Stuart Tremain >> idfk web developments, sydney, australia >> >> >> On 04 Oct 2005, at 12:00 PM, WJ Starck wrote: >> >> >> >>> Thanks Stuart- >>> >>> I don't believe it's the images. I use absolute urls for them >>> all, eg.: >>> >>> https://secure.novaderm.com/Images/image.jpg >>> >>> This is correct, no? >>> >>> Now, all the images are actually in the non 443 virtual >>> directory, and I have the DocumentRoot for the ssl side pointed >>> there. >>> >>> Also, this is scary: >>> >>> SYMPTOMS >>> >>> When you view a secure Web site that runs a Java script or uses >>> Dynamic Hypertext Markup Language (HTML), the Secure Lock >>> indicator may not be displayed on the Internet Explorer status bar. >>> CAUSE >>> >>> This behavior can occur if an HTML Anchor tag on the Web site >>> specifies a protocol that Internet Explorer does not recognize as >>> a secure protocol. For example, Internet Explorer does not >>> recognize JavaScript as a secure protocol. Therefore, the Secure >>> Lock indicator is removed from the status bar when the following >>> HTML Anchor tag is rendered: >>> Click Here to Submit >>> Form >>> >>> WTF- no javascript now (this page uses a javascript for a pulldown)? >>> >>> -Will >>> >>> >>> On Oct 3, 2005, at 6:30 PM, Stuart Tremain wrote: >>> >>> >>> >>> >>>> Also these >>>> http://support.microsoft.com/support/kb/articles/Q154/6/21.asp >>>> >>>> http://support.microsoft.com/support/kb/articles/Q179/5/92.ASP >>>> >>>> >>>> >>>> Stuart Tremain >>>> idfk web developments, sydney, australia >>>> >>>> >>>> On 04 Oct 2005, at 8:37 AM, WJ Starck wrote: >>>> >>>> >>>> >>>> >>>> >>>>> Hello all- >>>>> >>>>> I've had several customers mention recently that the security >>>>> icon in IE is showing that our site is not secure. I can't seem >>>>> to replicate it here. >>>>> >>>>> If any of you have spare time on your hands ;) >>>>> >>>>> would you mind hitting https://secure.novaderm.com/ >>>>> checkorder.html and reporting back? >>>>> >>>>> Any tips on tracking this one down appreciated >>>>> >>>>> Thanks, >>>>> >>>>> -Will >>>>> >>>>> ------------------------------------------------------------- >>>>> This message is sent to you because you are subscribed to >>>>> the mailing list . >>>>> To unsubscribe, E-mail to: >>>>> To switch to the DIGEST mode, E-mail to >>>> digest@talk.smithmicro.com> >>>>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>>>> >>>>> >>>>> >>>>> >>>>> >>>> >>>> >>>> ------------------------------------------------------------- >>>> This message is sent to you because you are subscribed to >>>> the mailing list . >>>> To unsubscribe, E-mail to: >>>> To switch to the DIGEST mode, E-mail to >>> digest@talk.smithmicro.com> >>>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>>> >>>> >>>> >>>> >>> >>> >>> ------------------------------------------------------------- >>> This message is sent to you because you are subscribed to >>> the mailing list . >>> To unsubscribe, E-mail to: >>> To switch to the DIGEST mode, E-mail to >> digest@talk.smithmicro.com> >>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>> >>> >>> >> >> >> ------------------------------------------------------------- >> This message is sent to you because you are subscribed to >> the mailing list . >> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to > digest@talk.smithmicro.com> >> Web Archive of this list is at: http://webdna.smithmicro.com/ >> >> > > > ------------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to digest@talk.smithmicro.com> > Web Archive of this list is at: http://webdna.smithmicro.com/ > ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Stuart Tremain

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

[TaxableTotal] - not working with AOL and IE (1997) Can't load tmpl files (1997) validatin on NT (sorry for the dups and etc) (1998) Message Board (1998) displaying New products (using [date]) (1997) WebCatalog for guestbook ? (1997) Summing fields (1997) Clearly.home (1998) WebCat2b12 - nesting [tags] (1997) New commands in Final candidate (1997) webcat (2000) New Guestbook Source (1997) WebCatalog can't find database (1997) Odd [math] behaviour (2003) list cookies and list http headers (1997) Tax on shipping (1998) Mozilla Firefox problem (2004) Migrating to NT (1997) Adding discount to cart (2000) HTTP upload (2000)