Re: [OT] SSL security in browser
This WebDNA talk-list message is from 2005
It keeps the original formatting.
numero = 63179
interpreted = N
texte = On a SECURE page:Links to other pages can be either HTTP or HTTPS.Images must be HTTPS or relative (according to the rules but fiddle with this)I have made all css & js relativeAm pulling my hair out over the Flash thing, will have to convert all to gif rollovers so that everyone who visits the site doesn't have to change their settings.Have a look through our new development:http://www.opsmdirect.com.auStuart Tremainidfk web developments, sydney, australiaOn 04 Oct 2005, at 12:25 PM, WJ Starck wrote:> One more question:>> When I had a link on an SSL page back to a non-SSL page, I keep all > the links https so they don't have to have that annoying ssl/non > ssl dialogue popping up all the time.>> Could this be the problem? Because on the non SSl pages, the images > are all relative links.>> ???>> -Will>>> On Oct 3, 2005, at 9:17 PM, Stuart Tremain wrote:>>>> Will>>>> I just had a look at the page you had as a link, one of the images >> appear as a relative link not absolute.>>>> Images/novasplash.gif>>>>>>>>>> Stuart Tremain>> idfk web developments, sydney, australia>>>>>> On 04 Oct 2005, at 12:00 PM, WJ Starck wrote:>>>>>>>>> Thanks Stuart->>>>>> I don't believe it's the images. I use absolute urls for them >>> all, eg.:>>>>>> https://secure.novaderm.com/Images/image.jpg>>>>>> This is correct, no?>>>>>> Now, all the images are actually in the non 443 virtual >>> directory, and I have the DocumentRoot for the ssl side pointed >>> there.>>>>>> Also, this is scary:>>>>>> SYMPTOMS>>>>>> When you view a secure Web site that runs a Java script or uses >>> Dynamic Hypertext Markup Language (HTML), the Secure Lock >>> indicator may not be displayed on the Internet Explorer status bar.>>> CAUSE>>>>>> This behavior can occur if an HTML Anchor tag on the Web site >>> specifies a protocol that Internet Explorer does not recognize as >>> a secure protocol. For example, Internet Explorer does not >>> recognize JavaScript as a secure protocol. Therefore, the Secure >>> Lock indicator is removed from the status bar when the following >>> HTML Anchor tag is rendered:>>>
Click Here to Submit >>> Form>>>>>> WTF- no javascript now (this page uses a javascript for a pulldown)?>>>>>> -Will>>>>>>>>> On Oct 3, 2005, at 6:30 PM, Stuart Tremain wrote:>>>>>>>>>>>>>>>> Also these>>>> http://support.microsoft.com/support/kb/articles/Q154/6/21.asp>>>>>>>> http://support.microsoft.com/support/kb/articles/Q179/5/92.ASP>>>>>>>>>>>>>>>> Stuart Tremain>>>> idfk web developments, sydney, australia>>>>>>>>>>>> On 04 Oct 2005, at 8:37 AM, WJ Starck wrote:>>>>>>>>>>>>>>>>>>>>>>>>> Hello all->>>>>>>>>> I've had several customers mention recently that the security >>>>> icon in IE is showing that our site is not secure. I can't seem >>>>> to replicate it here.>>>>>>>>>> If any of you have spare time on your hands ;)>>>>>>>>>> would you mind hitting https://secure.novaderm.com/ >>>>> checkorder.html and reporting back?>>>>>>>>>> Any tips on tracking this one down appreciated>>>>>>>>>> Thanks,>>>>>>>>>> -Will>>>>>>>>>> ------------------------------------------------------------->>>>> This message is sent to you because you are subscribed to>>>>> the mailing list
.>>>>> To unsubscribe, E-mail to: >>>>> To switch to the DIGEST mode, E-mail to >>>> digest@talk.smithmicro.com>>>>>> Web Archive of this list is at: http://webdna.smithmicro.com/>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> ------------------------------------------------------------->>>> This message is sent to you because you are subscribed to>>>> the mailing list .>>>> To unsubscribe, E-mail to: >>>> To switch to the DIGEST mode, E-mail to >>> digest@talk.smithmicro.com>>>>> Web Archive of this list is at: http://webdna.smithmicro.com/>>>>>>>>>>>>>>>>>>>>>>>>> ------------------------------------------------------------->>> This message is sent to you because you are subscribed to>>> the mailing list .>>> To unsubscribe, E-mail to: >>> To switch to the DIGEST mode, E-mail to >> digest@talk.smithmicro.com>>>> Web Archive of this list is at: http://webdna.smithmicro.com/>>>>>>>>>>>>>>> ------------------------------------------------------------->> This message is sent to you because you are subscribed to>> the mailing list .>> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to > digest@talk.smithmicro.com>>> Web Archive of this list is at: http://webdna.smithmicro.com/>>>>>>> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to digest@talk.smithmicro.com>> Web Archive of this list is at: http://webdna.smithmicro.com/>-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/
Associated Messages, from the most recent to the oldest:
On a SECURE page:Links to other pages can be either HTTP or HTTPS.Images must be HTTPS or relative (according to the rules but fiddle with this)I have made all css & js relativeAm pulling my hair out over the Flash thing, will have to convert all to gif rollovers so that everyone who visits the site doesn't have to change their settings.Have a look through our new development:http://www.opsmdirect.com.auStuart Tremainidfk web developments, sydney, australiaOn 04 Oct 2005, at 12:25 PM, WJ Starck wrote:> One more question:>> When I had a link on an SSL page back to a non-SSL page, I keep all > the links https so they don't have to have that annoying ssl/non > ssl dialogue popping up all the time.>> Could this be the problem? Because on the non SSl pages, the images > are all relative links.>> ???>> -Will>>> On Oct 3, 2005, at 9:17 PM, Stuart Tremain wrote:>>>> Will>>>> I just had a look at the page you had as a link, one of the images >> appear as a relative link not absolute.>>>> Images/novasplash.gif>>>>>>>>>> Stuart Tremain>> idfk web developments, sydney, australia>>>>>> On 04 Oct 2005, at 12:00 PM, WJ Starck wrote:>>>>>>>>> Thanks Stuart->>>>>> I don't believe it's the images. I use absolute urls for them >>> all, eg.:>>>>>> https://secure.novaderm.com/Images/image.jpg>>>>>> This is correct, no?>>>>>> Now, all the images are actually in the non 443 virtual >>> directory, and I have the DocumentRoot for the ssl side pointed >>> there.>>>>>> Also, this is scary:>>>>>> SYMPTOMS>>>>>> When you view a secure Web site that runs a Java script or uses >>> Dynamic Hypertext Markup Language (HTML), the Secure Lock >>> indicator may not be displayed on the Internet Explorer status bar.>>> CAUSE>>>>>> This behavior can occur if an HTML Anchor tag on the Web site >>> specifies a protocol that Internet Explorer does not recognize as >>> a secure protocol. For example, Internet Explorer does not >>> recognize JavaScript as a secure protocol. Therefore, the Secure >>> Lock indicator is removed from the status bar when the following >>> HTML Anchor tag is rendered:>>> Click Here to Submit >>> Form>>>>>> WTF- no javascript now (this page uses a javascript for a pulldown)?>>>>>> -Will>>>>>>>>> On Oct 3, 2005, at 6:30 PM, Stuart Tremain wrote:>>>>>>>>>>>>>>>> Also these>>>> http://support.microsoft.com/support/kb/articles/Q154/6/21.asp>>>>>>>> http://support.microsoft.com/support/kb/articles/Q179/5/92.ASP>>>>>>>>>>>>>>>> Stuart Tremain>>>> idfk web developments, sydney, australia>>>>>>>>>>>> On 04 Oct 2005, at 8:37 AM, WJ Starck wrote:>>>>>>>>>>>>>>>>>>>>>>>>> Hello all->>>>>>>>>> I've had several customers mention recently that the security >>>>> icon in IE is showing that our site is not secure. I can't seem >>>>> to replicate it here.>>>>>>>>>> If any of you have spare time on your hands ;)>>>>>>>>>> would you mind hitting https://secure.novaderm.com/ >>>>> checkorder.html and reporting back?>>>>>>>>>> Any tips on tracking this one down appreciated>>>>>>>>>> Thanks,>>>>>>>>>> -Will>>>>>>>>>> ------------------------------------------------------------->>>>> This message is sent to you because you are subscribed to>>>>> the mailing list .>>>>> To unsubscribe, E-mail to: >>>>> To switch to the DIGEST mode, E-mail to >>>> digest@talk.smithmicro.com>>>>>> Web Archive of this list is at: http://webdna.smithmicro.com/>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> ------------------------------------------------------------->>>> This message is sent to you because you are subscribed to>>>> the mailing list .>>>> To unsubscribe, E-mail to: >>>> To switch to the DIGEST mode, E-mail to >>> digest@talk.smithmicro.com>>>>> Web Archive of this list is at: http://webdna.smithmicro.com/>>>>>>>>>>>>>>>>>>>>>>>>> ------------------------------------------------------------->>> This message is sent to you because you are subscribed to>>> the mailing list .>>> To unsubscribe, E-mail to: >>> To switch to the DIGEST mode, E-mail to >> digest@talk.smithmicro.com>>>> Web Archive of this list is at: http://webdna.smithmicro.com/>>>>>>>>>>>>>>> ------------------------------------------------------------->> This message is sent to you because you are subscribed to>> the mailing list .>> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to > digest@talk.smithmicro.com>>> Web Archive of this list is at: http://webdna.smithmicro.com/>>>>>>> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to digest@talk.smithmicro.com>> Web Archive of this list is at: http://webdna.smithmicro.com/>-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/
Stuart Tremain
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
[TaxableTotal] - not working with AOL and IE (1997)
Can't load tmpl files (1997)
validatin on NT (sorry for the dups and etc) (1998)
Message Board (1998)
displaying New products (using [date]) (1997)
WebCatalog for guestbook ? (1997)
Summing fields (1997)
Clearly.home (1998)
WebCat2b12 - nesting [tags] (1997)
New commands in Final candidate (1997)
webcat (2000)
New Guestbook Source (1997)
WebCatalog can't find database (1997)
Odd [math] behaviour (2003)
list cookies and list http headers (1997)
Tax on shipping (1998)
Mozilla Firefox problem (2004)
Migrating to NT (1997)
Adding discount to cart (2000)
HTTP upload (2000)