Re: [OT] SSL security in browser

This WebDNA talk-list message is from

2005


It keeps the original formatting.
numero = 63182
interpreted = N
texte = Will There are a couple of elements that we are still working around :( Stuart Tremain idfk web developments, sydney, australia On 04 Oct 2005, at 11:49 PM, Will Starck wrote: > Stuart- > > Nice. > > FYI - When I hit this page > > https://www.opsmdirect.com.au/checkout.html > > IE kicks up a dialog box that says: > > "This page contains both secure and nonsecure items. Do you want to > display the nonsecure items" > > If I Click 'Yes', the padlock does not display. > > Cheers, > > Will > > > > On Tue, 4 Oct 2005 12:36:47 +1000 > Stuart Tremain wrote: > >> On a SECURE page: >> Links to other pages can be either HTTP or HTTPS. >> Images must be HTTPS or relative (according to the rules but >> fiddle with this) >> I have made all css & js relative >> Am pulling my hair out over the Flash thing, will have to convert >> all to gif rollovers so that everyone who visits the site doesn't >> have to change their settings. >> Have a look through our new development: >> http://www.opsmdirect.com.au >> Stuart Tremain >> idfk web developments, sydney, australia >> On 04 Oct 2005, at 12:25 PM, WJ Starck wrote: >> >>> One more question: >>> >>> When I had a link on an SSL page back to a non-SSL page, I keep >>> all the links https so they don't have to have that annoying ssl/ >>> non ssl dialogue popping up all the time. >>> >>> Could this be the problem? Because on the non SSl pages, the >>> images are all relative links. >>> >>> ??? >>> >>> -Will >>> >>> >>> On Oct 3, 2005, at 9:17 PM, Stuart Tremain wrote: >>> >>> >>> >>>> Will >>>> >>>> I just had a look at the page you had as a link, one of the >>>> images appear as a relative link not absolute. >>>> >>>> Images/novasplash.gif >>>> >>>> >>>> >>>> >>>> Stuart Tremain >>>> idfk web developments, sydney, australia >>>> >>>> >>>> On 04 Oct 2005, at 12:00 PM, WJ Starck wrote: >>>> >>>> >>>> >>>> >>>>> Thanks Stuart- >>>>> >>>>> I don't believe it's the images. I use absolute urls for them >>>>> all, eg.: >>>>> >>>>> https://secure.novaderm.com/Images/image.jpg >>>>> >>>>> This is correct, no? >>>>> >>>>> Now, all the images are actually in the non 443 virtual >>>>> directory, and I have the DocumentRoot for the ssl side >>>>> pointed there. >>>>> >>>>> Also, this is scary: >>>>> >>>>> SYMPTOMS >>>>> >>>>> When you view a secure Web site that runs a Java script or >>>>> uses Dynamic Hypertext Markup Language (HTML), the Secure >>>>> Lock indicator may not be displayed on the Internet Explorer >>>>> status bar. >>>>> CAUSE >>>>> >>>>> This behavior can occur if an HTML Anchor tag on the Web site >>>>> specifies a protocol that Internet Explorer does not recognize >>>>> as a secure protocol. For example, Internet Explorer does not >>>>> recognize JavaScript as a secure protocol. Therefore, the >>>>> Secure Lock indicator is removed from the status bar when the >>>>> following HTML Anchor tag is rendered: >>>>> Click Here to >>>>> Submit Form >>>>> >>>>> WTF- no javascript now (this page uses a javascript for a >>>>> pulldown)? >>>>> >>>>> -Will >>>>> >>>>> >>>>> On Oct 3, 2005, at 6:30 PM, Stuart Tremain wrote: >>>>> >>>>> >>>>> >>>>> >>>>> >>>>>> Also these >>>>>> http://support.microsoft.com/support/kb/articles/Q154/6/21.asp >>>>>> >>>>>> http://support.microsoft.com/support/kb/articles/Q179/5/92.ASP >>>>>> >>>>>> >>>>>> >>>>>> Stuart Tremain >>>>>> idfk web developments, sydney, australia >>>>>> >>>>>> >>>>>> On 04 Oct 2005, at 8:37 AM, WJ Starck wrote: >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>>>> Hello all- >>>>>>> >>>>>>> I've had several customers mention recently that the >>>>>>> security icon in IE is showing that our site is not secure. >>>>>>> I can't seem to replicate it here. >>>>>>> >>>>>>> If any of you have spare time on your hands ;) >>>>>>> >>>>>>> would you mind hitting https://secure.novaderm.com/ >>>>>>> checkorder.html and reporting back? >>>>>>> >>>>>>> Any tips on tracking this one down appreciated >>>>>>> >>>>>>> Thanks, >>>>>>> >>>>>>> -Will >>>>>>> >>>>>>> ------------------------------------------------------------- >>>>>>> This message is sent to you because you are subscribed to >>>>>>> the mailing list . >>>>>>> To unsubscribe, E-mail to: >>>>>>> To switch to the DIGEST mode, E-mail to >>>>>> digest@talk.smithmicro.com> >>>>>>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>> >>>>>> >>>>>> ------------------------------------------------------------- >>>>>> This message is sent to you because you are subscribed to >>>>>> the mailing list . >>>>>> To unsubscribe, E-mail to: >>>>>> To switch to the DIGEST mode, E-mail to >>>>> digest@talk.smithmicro.com> >>>>>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>> >>>>> >>>>> ------------------------------------------------------------- >>>>> This message is sent to you because you are subscribed to >>>>> the mailing list . >>>>> To unsubscribe, E-mail to: >>>>> To switch to the DIGEST mode, E-mail to >>>> digest@talk.smithmicro.com> >>>>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>>>> >>>>> >>>>> >>>>> >>>> >>>> >>>> ------------------------------------------------------------- >>>> This message is sent to you because you are subscribed to >>>> the mailing list . >>>> To unsubscribe, E-mail to: >>>> To switch to the DIGEST mode, E-mail to >>> digest@talk.smithmicro.com> >>>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>>> >>>> >>>> >>> >>> >>> ------------------------------------------------------------- >>> This message is sent to you because you are subscribed to >>> the mailing list . >>> To unsubscribe, E-mail to: >>> To switch to the DIGEST mode, E-mail to >> digest@talk.smithmicro.com> >>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>> >>> >> ------------------------------------------------------------- >> This message is sent to you because you are subscribed to >> the mailing list . >> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to > digest@talk.smithmicro.com> >> Web Archive of this list is at: http://webdna.smithmicro.com/ >> > > > ------------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to digest@talk.smithmicro.com> > Web Archive of this list is at: http://webdna.smithmicro.com/ > ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  2. Re: [OT] SSL security in browser ( "Will Starck" 2005)
  3. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  4. Re: [OT] SSL security in browser ( WJ Starck 2005)
  5. Re: [OT] SSL security in browser ( WJ Starck 2005)
  6. Re: [OT] SSL security in browser ( WJ Starck 2005)
  7. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  8. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  9. Re: [OT] SSL security in browser ( WJ Starck 2005)
  10. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  11. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  12. Re: [OT] SSL security in browser ( "WebDNA Talk-List Admin" 2005)
  13. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  14. [OT] SSL security in browser ( WJ Starck 2005)
Will There are a couple of elements that we are still working around :( Stuart Tremain idfk web developments, sydney, australia On 04 Oct 2005, at 11:49 PM, Will Starck wrote: > Stuart- > > Nice. > > FYI - When I hit this page > > https://www.opsmdirect.com.au/checkout.html > > IE kicks up a dialog box that says: > > "This page contains both secure and nonsecure items. Do you want to > display the nonsecure items" > > If I Click 'Yes', the padlock does not display. > > Cheers, > > Will > > > > On Tue, 4 Oct 2005 12:36:47 +1000 > Stuart Tremain wrote: > >> On a SECURE page: >> Links to other pages can be either HTTP or HTTPS. >> Images must be HTTPS or relative (according to the rules but >> fiddle with this) >> I have made all css & js relative >> Am pulling my hair out over the Flash thing, will have to convert >> all to gif rollovers so that everyone who visits the site doesn't >> have to change their settings. >> Have a look through our new development: >> http://www.opsmdirect.com.au >> Stuart Tremain >> idfk web developments, sydney, australia >> On 04 Oct 2005, at 12:25 PM, WJ Starck wrote: >> >>> One more question: >>> >>> When I had a link on an SSL page back to a non-SSL page, I keep >>> all the links https so they don't have to have that annoying ssl/ >>> non ssl dialogue popping up all the time. >>> >>> Could this be the problem? Because on the non SSl pages, the >>> images are all relative links. >>> >>> ??? >>> >>> -Will >>> >>> >>> On Oct 3, 2005, at 9:17 PM, Stuart Tremain wrote: >>> >>> >>> >>>> Will >>>> >>>> I just had a look at the page you had as a link, one of the >>>> images appear as a relative link not absolute. >>>> >>>> Images/novasplash.gif >>>> >>>> >>>> >>>> >>>> Stuart Tremain >>>> idfk web developments, sydney, australia >>>> >>>> >>>> On 04 Oct 2005, at 12:00 PM, WJ Starck wrote: >>>> >>>> >>>> >>>> >>>>> Thanks Stuart- >>>>> >>>>> I don't believe it's the images. I use absolute urls for them >>>>> all, eg.: >>>>> >>>>> https://secure.novaderm.com/Images/image.jpg >>>>> >>>>> This is correct, no? >>>>> >>>>> Now, all the images are actually in the non 443 virtual >>>>> directory, and I have the DocumentRoot for the ssl side >>>>> pointed there. >>>>> >>>>> Also, this is scary: >>>>> >>>>> SYMPTOMS >>>>> >>>>> When you view a secure Web site that runs a Java script or >>>>> uses Dynamic Hypertext Markup Language (HTML), the Secure >>>>> Lock indicator may not be displayed on the Internet Explorer >>>>> status bar. >>>>> CAUSE >>>>> >>>>> This behavior can occur if an HTML Anchor tag on the Web site >>>>> specifies a protocol that Internet Explorer does not recognize >>>>> as a secure protocol. For example, Internet Explorer does not >>>>> recognize JavaScript as a secure protocol. Therefore, the >>>>> Secure Lock indicator is removed from the status bar when the >>>>> following HTML Anchor tag is rendered: >>>>> Click Here to >>>>> Submit Form >>>>> >>>>> WTF- no javascript now (this page uses a javascript for a >>>>> pulldown)? >>>>> >>>>> -Will >>>>> >>>>> >>>>> On Oct 3, 2005, at 6:30 PM, Stuart Tremain wrote: >>>>> >>>>> >>>>> >>>>> >>>>> >>>>>> Also these >>>>>> http://support.microsoft.com/support/kb/articles/Q154/6/21.asp >>>>>> >>>>>> http://support.microsoft.com/support/kb/articles/Q179/5/92.ASP >>>>>> >>>>>> >>>>>> >>>>>> Stuart Tremain >>>>>> idfk web developments, sydney, australia >>>>>> >>>>>> >>>>>> On 04 Oct 2005, at 8:37 AM, WJ Starck wrote: >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>>>> Hello all- >>>>>>> >>>>>>> I've had several customers mention recently that the >>>>>>> security icon in IE is showing that our site is not secure. >>>>>>> I can't seem to replicate it here. >>>>>>> >>>>>>> If any of you have spare time on your hands ;) >>>>>>> >>>>>>> would you mind hitting https://secure.novaderm.com/ >>>>>>> checkorder.html and reporting back? >>>>>>> >>>>>>> Any tips on tracking this one down appreciated >>>>>>> >>>>>>> Thanks, >>>>>>> >>>>>>> -Will >>>>>>> >>>>>>> ------------------------------------------------------------- >>>>>>> This message is sent to you because you are subscribed to >>>>>>> the mailing list . >>>>>>> To unsubscribe, E-mail to: >>>>>>> To switch to the DIGEST mode, E-mail to >>>>>> digest@talk.smithmicro.com> >>>>>>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>> >>>>>> >>>>>> ------------------------------------------------------------- >>>>>> This message is sent to you because you are subscribed to >>>>>> the mailing list . >>>>>> To unsubscribe, E-mail to: >>>>>> To switch to the DIGEST mode, E-mail to >>>>> digest@talk.smithmicro.com> >>>>>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>> >>>>> >>>>> ------------------------------------------------------------- >>>>> This message is sent to you because you are subscribed to >>>>> the mailing list . >>>>> To unsubscribe, E-mail to: >>>>> To switch to the DIGEST mode, E-mail to >>>> digest@talk.smithmicro.com> >>>>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>>>> >>>>> >>>>> >>>>> >>>> >>>> >>>> ------------------------------------------------------------- >>>> This message is sent to you because you are subscribed to >>>> the mailing list . >>>> To unsubscribe, E-mail to: >>>> To switch to the DIGEST mode, E-mail to >>> digest@talk.smithmicro.com> >>>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>>> >>>> >>>> >>> >>> >>> ------------------------------------------------------------- >>> This message is sent to you because you are subscribed to >>> the mailing list . >>> To unsubscribe, E-mail to: >>> To switch to the DIGEST mode, E-mail to >> digest@talk.smithmicro.com> >>> Web Archive of this list is at: http://webdna.smithmicro.com/ >>> >>> >> ------------------------------------------------------------- >> This message is sent to you because you are subscribed to >> the mailing list . >> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to > digest@talk.smithmicro.com> >> Web Archive of this list is at: http://webdna.smithmicro.com/ >> > > > ------------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to digest@talk.smithmicro.com> > Web Archive of this list is at: http://webdna.smithmicro.com/ > ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Stuart Tremain

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

pull downs (1997) quick GREP question (2001) Too many wrong answers! (1998) t or f (1997) A little syntax help (1997) Date Range works (1997) Where is f2? (1997) [WebDNA] search by range of dates (2009) WC on Mac OS X or Mac OS X Server 2.x (2001) WebCat2: Found Items syntax, etc. (1997) acrobat -> wc (1998) [founditems][replacefounditems] (2003) The beginning (1997) Reloading adds items - how to prevent?? (1998) problems with 2 tags (1997) [/application] error? (1997) why why why (2004) search/showif issues (2000) downloading binary files ussing mime and tcpconnect (2004) New Plug-in and Type 11 errors (1997)