Re: [OT] SSL security in browser

This WebDNA talk-list message is from

2005


It keeps the original formatting.
numero = 63181
interpreted = N
texte = Stuart- Nice. FYI - When I hit this page https://www.opsmdirect.com.au/checkout.html IE kicks up a dialog box that says: "This page contains both secure and nonsecure items. Do you want to display the nonsecure items" If I Click 'Yes', the padlock does not display. Cheers, Will On Tue, 4 Oct 2005 12:36:47 +1000 Stuart Tremain wrote: > On a SECURE page: > Links to other pages can be either HTTP or HTTPS. > Images must be HTTPS or relative (according to the rules >but fiddle with this) > I have made all css & js relative > Am pulling my hair out over the Flash thing, will have >to convert all to gif rollovers so that everyone who >visits the site doesn't have to change their settings. > > Have a look through our new development: > > http://www.opsmdirect.com.au > > > Stuart Tremain > idfk web developments, sydney, australia > > > On 04 Oct 2005, at 12:25 PM, WJ Starck wrote: > >> One more question: >> >> When I had a link on an SSL page back to a non-SSL page, >>I keep all >> the links https so they don't have to have that annoying >>ssl/non >> ssl dialogue popping up all the time. >> >> Could this be the problem? Because on the non SSl pages, >>the images >> are all relative links. >> >> ??? >> >> -Will >> >> >> On Oct 3, 2005, at 9:17 PM, Stuart Tremain wrote: >> >> >>> Will >>> >>> I just had a look at the page you had as a link, one of >>>the images >>> appear as a relative link not absolute. >>> >>> Images/novasplash.gif >>> >>> >>> >>> >>> Stuart Tremain >>> idfk web developments, sydney, australia >>> >>> >>> On 04 Oct 2005, at 12:00 PM, WJ Starck wrote: >>> >>> >>> >>>> Thanks Stuart- >>>> >>>> I don't believe it's the images. I use absolute urls for >>>>them >>>> all, eg.: >>>> >>>> https://secure.novaderm.com/Images/image.jpg >>>> >>>> This is correct, no? >>>> >>>> Now, all the images are actually in the non 443 virtual >>>> >>>> directory, and I have the DocumentRoot for the ssl side >>>>pointed >>>> there. >>>> >>>> Also, this is scary: >>>> >>>> SYMPTOMS >>>> >>>> When you view a secure Web site that runs a Java script >>>>or uses >>>> Dynamic Hypertext Markup Language (HTML), the Secure >>>>Lock >>>> indicator may not be displayed on the Internet Explorer >>>>status bar. >>>> CAUSE >>>> >>>> This behavior can occur if an HTML Anchor tag on the Web >>>>site >>>> specifies a protocol that Internet Explorer does not >>>>recognize as >>>> a secure protocol. For example, Internet Explorer does >>>>not >>>> recognize JavaScript as a secure protocol. Therefore, >>>>the Secure >>>> Lock indicator is removed from the status bar when the >>>>following >>>> HTML Anchor tag is rendered: >>>> Click Here to >>>>Submit >>>> Form >>>> >>>> WTF- no javascript now (this page uses a javascript for >>>>a pulldown)? >>>> >>>> -Will >>>> >>>> >>>> On Oct 3, 2005, at 6:30 PM, Stuart Tremain wrote: >>>> >>>> >>>> >>>> >>>>> Also these >>>>> http://support.microsoft.com/support/kb/articles/Q154/6/21.asp >>>>> >>>>> http://support.microsoft.com/support/kb/articles/Q179/5/92.ASP >>>>> >>>>> >>>>> >>>>> Stuart Tremain >>>>> idfk web developments, sydney, australia >>>>> >>>>> >>>>> On 04 Oct 2005, at 8:37 AM, WJ Starck wrote: >>>>> >>>>> >>>>> >>>>> >>>>> >>>>>> Hello all- >>>>>> >>>>>> I've had several customers mention recently that the >>>>>>security >>>>>> icon in IE is showing that our site is not secure. I >>>>>>can't seem >>>>>> to replicate it here. >>>>>> >>>>>> If any of you have spare time on your hands ;) >>>>>> >>>>>> would you mind hitting https://secure.novaderm.com/ >>>>>> checkorder.html and reporting back? >>>>>> >>>>>> Any tips on tracking this one down appreciated >>>>>> >>>>>> Thanks, >>>>>> >>>>>> -Will >>>>>> >>>>>> ------------------------------------------------------------- >>>>>> This message is sent to you because you are subscribed >>>>>>to >>>>>> the mailing list . >>>>>> To unsubscribe, E-mail to: >>>>>> >>>>>> To switch to the DIGEST mode, E-mail to >>>>> digest@talk.smithmicro.com> >>>>>> Web Archive of this list is at: >>>>>>http://webdna.smithmicro.com/ >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>> >>>>> >>>>> ------------------------------------------------------------- >>>>> This message is sent to you because you are subscribed >>>>>to >>>>> the mailing list . >>>>> To unsubscribe, E-mail to: >>>>> >>>>> To switch to the DIGEST mode, E-mail to >>>> digest@talk.smithmicro.com> >>>>> Web Archive of this list is at: >>>>>http://webdna.smithmicro.com/ >>>>> >>>>> >>>>> >>>>> >>>> >>>> >>>> ------------------------------------------------------------- >>>> This message is sent to you because you are subscribed >>>>to >>>> the mailing list . >>>> To unsubscribe, E-mail to: >>>> >>>> To switch to the DIGEST mode, E-mail to >>> digest@talk.smithmicro.com> >>>> Web Archive of this list is at: >>>>http://webdna.smithmicro.com/ >>>> >>>> >>>> >>> >>> >>> ------------------------------------------------------------- >>> This message is sent to you because you are subscribed >>>to >>> the mailing list . >>> To unsubscribe, E-mail to: >>> >>> To switch to the DIGEST mode, E-mail to >> digest@talk.smithmicro.com> >>> Web Archive of this list is at: >>>http://webdna.smithmicro.com/ >>> >>> >> >> >> ------------------------------------------------------------- >> This message is sent to you because you are subscribed >>to >> the mailing list . >> To unsubscribe, E-mail to: >> >> To switch to the DIGEST mode, E-mail to > digest@talk.smithmicro.com> >> Web Archive of this list is at: >>http://webdna.smithmicro.com/ >> > > > ------------------------------------------------------------- > This message is sent to you because you are subscribed >to > the mailing list . > To unsubscribe, E-mail to: > > To switch to the DIGEST mode, E-mail to > > Web Archive of this list is at: >http://webdna.smithmicro.com/ ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  2. Re: [OT] SSL security in browser ( "Will Starck" 2005)
  3. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  4. Re: [OT] SSL security in browser ( WJ Starck 2005)
  5. Re: [OT] SSL security in browser ( WJ Starck 2005)
  6. Re: [OT] SSL security in browser ( WJ Starck 2005)
  7. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  8. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  9. Re: [OT] SSL security in browser ( WJ Starck 2005)
  10. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  11. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  12. Re: [OT] SSL security in browser ( "WebDNA Talk-List Admin" 2005)
  13. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  14. [OT] SSL security in browser ( WJ Starck 2005)
Stuart- Nice. FYI - When I hit this page https://www.opsmdirect.com.au/checkout.html IE kicks up a dialog box that says: "This page contains both secure and nonsecure items. Do you want to display the nonsecure items" If I Click 'Yes', the padlock does not display. Cheers, Will On Tue, 4 Oct 2005 12:36:47 +1000 Stuart Tremain wrote: > On a SECURE page: > Links to other pages can be either HTTP or HTTPS. > Images must be HTTPS or relative (according to the rules >but fiddle with this) > I have made all css & js relative > Am pulling my hair out over the Flash thing, will have >to convert all to gif rollovers so that everyone who >visits the site doesn't have to change their settings. > > Have a look through our new development: > > http://www.opsmdirect.com.au > > > Stuart Tremain > idfk web developments, sydney, australia > > > On 04 Oct 2005, at 12:25 PM, WJ Starck wrote: > >> One more question: >> >> When I had a link on an SSL page back to a non-SSL page, >>I keep all >> the links https so they don't have to have that annoying >>ssl/non >> ssl dialogue popping up all the time. >> >> Could this be the problem? Because on the non SSl pages, >>the images >> are all relative links. >> >> ??? >> >> -Will >> >> >> On Oct 3, 2005, at 9:17 PM, Stuart Tremain wrote: >> >> >>> Will >>> >>> I just had a look at the page you had as a link, one of >>>the images >>> appear as a relative link not absolute. >>> >>> Images/novasplash.gif >>> >>> >>> >>> >>> Stuart Tremain >>> idfk web developments, sydney, australia >>> >>> >>> On 04 Oct 2005, at 12:00 PM, WJ Starck wrote: >>> >>> >>> >>>> Thanks Stuart- >>>> >>>> I don't believe it's the images. I use absolute urls for >>>>them >>>> all, eg.: >>>> >>>> https://secure.novaderm.com/Images/image.jpg >>>> >>>> This is correct, no? >>>> >>>> Now, all the images are actually in the non 443 virtual >>>> >>>> directory, and I have the DocumentRoot for the ssl side >>>>pointed >>>> there. >>>> >>>> Also, this is scary: >>>> >>>> SYMPTOMS >>>> >>>> When you view a secure Web site that runs a Java script >>>>or uses >>>> Dynamic Hypertext Markup Language (HTML), the Secure >>>>Lock >>>> indicator may not be displayed on the Internet Explorer >>>>status bar. >>>> CAUSE >>>> >>>> This behavior can occur if an HTML Anchor tag on the Web >>>>site >>>> specifies a protocol that Internet Explorer does not >>>>recognize as >>>> a secure protocol. For example, Internet Explorer does >>>>not >>>> recognize JavaScript as a secure protocol. Therefore, >>>>the Secure >>>> Lock indicator is removed from the status bar when the >>>>following >>>> HTML Anchor tag is rendered: >>>> Click Here to >>>>Submit >>>> Form >>>> >>>> WTF- no javascript now (this page uses a javascript for >>>>a pulldown)? >>>> >>>> -Will >>>> >>>> >>>> On Oct 3, 2005, at 6:30 PM, Stuart Tremain wrote: >>>> >>>> >>>> >>>> >>>>> Also these >>>>> http://support.microsoft.com/support/kb/articles/Q154/6/21.asp >>>>> >>>>> http://support.microsoft.com/support/kb/articles/Q179/5/92.ASP >>>>> >>>>> >>>>> >>>>> Stuart Tremain >>>>> idfk web developments, sydney, australia >>>>> >>>>> >>>>> On 04 Oct 2005, at 8:37 AM, WJ Starck wrote: >>>>> >>>>> >>>>> >>>>> >>>>> >>>>>> Hello all- >>>>>> >>>>>> I've had several customers mention recently that the >>>>>>security >>>>>> icon in IE is showing that our site is not secure. I >>>>>>can't seem >>>>>> to replicate it here. >>>>>> >>>>>> If any of you have spare time on your hands ;) >>>>>> >>>>>> would you mind hitting https://secure.novaderm.com/ >>>>>> checkorder.html and reporting back? >>>>>> >>>>>> Any tips on tracking this one down appreciated >>>>>> >>>>>> Thanks, >>>>>> >>>>>> -Will >>>>>> >>>>>> ------------------------------------------------------------- >>>>>> This message is sent to you because you are subscribed >>>>>>to >>>>>> the mailing list . >>>>>> To unsubscribe, E-mail to: >>>>>> >>>>>> To switch to the DIGEST mode, E-mail to >>>>> digest@talk.smithmicro.com> >>>>>> Web Archive of this list is at: >>>>>>http://webdna.smithmicro.com/ >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>> >>>>> >>>>> ------------------------------------------------------------- >>>>> This message is sent to you because you are subscribed >>>>>to >>>>> the mailing list . >>>>> To unsubscribe, E-mail to: >>>>> >>>>> To switch to the DIGEST mode, E-mail to >>>> digest@talk.smithmicro.com> >>>>> Web Archive of this list is at: >>>>>http://webdna.smithmicro.com/ >>>>> >>>>> >>>>> >>>>> >>>> >>>> >>>> ------------------------------------------------------------- >>>> This message is sent to you because you are subscribed >>>>to >>>> the mailing list . >>>> To unsubscribe, E-mail to: >>>> >>>> To switch to the DIGEST mode, E-mail to >>> digest@talk.smithmicro.com> >>>> Web Archive of this list is at: >>>>http://webdna.smithmicro.com/ >>>> >>>> >>>> >>> >>> >>> ------------------------------------------------------------- >>> This message is sent to you because you are subscribed >>>to >>> the mailing list . >>> To unsubscribe, E-mail to: >>> >>> To switch to the DIGEST mode, E-mail to >> digest@talk.smithmicro.com> >>> Web Archive of this list is at: >>>http://webdna.smithmicro.com/ >>> >>> >> >> >> ------------------------------------------------------------- >> This message is sent to you because you are subscribed >>to >> the mailing list . >> To unsubscribe, E-mail to: >> >> To switch to the DIGEST mode, E-mail to > digest@talk.smithmicro.com> >> Web Archive of this list is at: >>http://webdna.smithmicro.com/ >> > > > ------------------------------------------------------------- > This message is sent to you because you are subscribed >to > the mailing list . > To unsubscribe, E-mail to: > > To switch to the DIGEST mode, E-mail to > > Web Archive of this list is at: >http://webdna.smithmicro.com/ ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ "Will Starck"

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Is there a max number of fields? (1998) Date Time Oddness (1999) available times? (2003) POS (2000) More Applescript (1997) WC2b15 File Corruption (1997) form data submission gets truncated (1997) Multiple cart additions (1997) mass mailing (1998) unclear on a simple [cart] ? (1998) Danger of [newcart] (1999) SpiderBotLock! (2003) Semi OT: vbulletin and # viewing - how do that do that? (2003) javascript implementation of MD5 algorithm for Authorize.Net (2003) photo upload snippet (2006) Formating found categories (1997) RE: WebCatalog2 for NT Beta Request (1997) Virtual hosting and webcatNT (1997) WebCat2b13MacPlugin - [math][date][/math] problem (1997) About the + sign (2002)