Announcement

Collapse
No announcement yet.

SSL secure and non-secure items

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

    #16
    site back again, ready for ridicule...

    ok it's back online...
    njb

    Comment


      #17
      The reason for the whole site being SSL is so that people can see the Gold Key when they visit. In my experience many people have learned that this indicates that the site is safe!
      Very true and vital these days BUT the golden padlock only shows on the site for a very short time as users are requested to allow secure/insecure viewing. More importantly when you get to checkout it does not show at all

      Comment


        #18
        BUT the golden padlock only shows on the site for a very short time as users are requ

        Yes, I know, that's why I raised it to start with... not sure where the insecure is coming from... thought it was the menus... but not that,
        hasn't helped with the secure server failing earlier today. I'm still developing the site and trying to iron out these problems. Even the browsers give me inconsistent results. I've just installed FireFox as everyone says how great it is, hoping it might help me pin point things.
        njb

        Comment


          #19
          OK I really am stuck now...

          This is the call made through section links:
          https://www1.securesiteserver.co.uk/...html&NOLOGIN=1

          The target page via SSL is actually:
          https://www1.securesiteserver.co.uk/...ens_Coats.html

          The non SSL page for this is actually:
          http://www.streetleatherwear.co.uk/a...ens_Coats.html

          It seems that when the cgi-bin call is made as in the first example above the browser reports that the page contains both secure and non-secure items.

          When called in the second way no errors are reported and the secure page loads ok and to my mind says that I have no non-secure links within the page.

          The question I would like to answer is what is happening in cgi-bin case that causes the error? My guess is the problem lies with ss000000.pl attached as a txt file for those familiar with perl...

          ...in thinking about this further it would appear that in (first example) the cgi path isn't traversing the SSL route, just going straight to the actalog product file. The result (the non-secure items) are probably the menu links, where some, not all, have lost their SSL paths. When we look at the second way, all menu links have their SSL path defined.
          Attached Files
          njb

          Comment


            #20
            sunday morning... and its all working as it should...

            something funny here, I've changed nothing and this morning it's all working as it should, something dodgy about the secure server I can only reason. I cleared all my caches, reloaded etc yesterday in desparation to no avail and today it's fine. Have asked ISP to tell me what was happening with their server...
            njb

            Comment


              #21
              something dodgy about the secure server
              An understatement! It still looks the same to me ie no padlock on any part of the site. Looking at what you have said it sounds like the site is hosted on an unsecure server and delievred using a secure connection - if this is true then its a waste of time as the credit card details are held on an unsecured server and you will never be able to get the padlock to show on the unsecure pages.

              Comment


                #22
                It still looks the same to me ie no padlock

                That's strange as I'm looking at the site www.streetleatherwear.co.uk through IE6 and Firefox and all pages (apart from initial index, first time in) are being displayed as secure. Have you tried a refresh? If each of the menu links at the top do not refer to www1.securesite etc then try a refresh.

                My understanding is that the CC details are encrypted.
                njb

                Comment


                  #23
                  Menu links are refering to www1.securesite etc but the insecure pages are being shown after the secure/insecure warning.

                  Comment


                    #24
                    secure/insecure

                    Very odd, I can't reproduce what you are experiencing.
                    Any chance of identifying which link(s) it thinks are insecure?
                    The URL of A/the specific page where this happens would also be helpful, link from/to that is.
                    Finally, which browser(s)/version do you have?

                    Thanks Nigel
                    njb

                    Comment


                      #25
                      All links are showing as insecure - ie6 with latest updates.

                      Comment


                        #26
                        here we go again...Problem Solved

                        Trevor, I finally managed to get the same errors as you were getting by resurecting my old faithful "Gold brick" laptop i.e. one that I never use because unlike me it's old and decrepit... I'm pretty sure that it is now ok (the secure nonsecure pages problem that is).

                        I've made 2 changes:
                        1) the entry point into Actinic was previously non-secure i.e. the catalog index page was starting off life as non-secure i.e. http Best Sellers (index.html as created by Actinic) this was the site landing page. All links from it are/were SSL - https.

                        There is now a secure entry point achieved using php to rediect to the SSL pages.

                        2) the "Use Relative CGI-BIN URLs in Catalog pages" box in Network Settings has been checked.

                        so at this point I light the blue touch paper and stand clear... n
                        njb

                        Comment


                          #27
                          Similar problem with SSL secure and insecure items

                          Hi

                          I've just posted a test site to upgrade from v7 to v8. We have carried out a Site Snapshot import and all went well - but the test site checkout pages are bringing up the pop up alert about secure and insecure items. Can anyone tell us why this happens in v8 when v7 is still running fine?

                          You can see the issues at

                          http://www.noahsarkgardens.co.uk/acatalog/

                          http://noahsarkgardens.co.uk/acatalog/test/acatalog/

                          Please reply to the stupid as I'm no techie or programmer but I can follow instructions.

                          Comment


                            #28
                            Noahs Ark...

                            We've had a lot of rain in Somerset today - could be useful...

                            Error opening configuration file ../public_html/acatalog/test/acatalog/A00018.cat. No such file or directory

                            I get the above error when clicking on BUY button.

                            Maybe you are in the middle of fiddling - if not I suggest you refresh the site.

                            Nigel
                            njb

                            Comment

                            Working...
                            X