|
Home > Archive > IIS Server Security > October 2005 > How to separate mixed content - secure and non-secure
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
How to separate mixed content - secure and non-secure
|
|
| Oscar Diaz 2005-10-10, 6:02 pm |
| We have recently installed a security certificate and are recieving message
prompts that the site is displaying mixed content. Without configuring IIS to
disable these prompts can we eliminate these messages by separating secure
content from pages that do not need security?
| |
| Tom Kaminski [MVP] 2005-10-10, 6:02 pm |
| "Oscar Diaz" <OscarDiaz@discussions.microsoft.com> wrote in message
news:EB5E33F4-E0EE-4B1C-945F-F32CC6EC2580@microsoft.com...
> We have recently installed a security certificate and are recieving
> message
> prompts that the site is displaying mixed content. Without configuring IIS
> to
> disable these prompts can we eliminate these messages by separating secure
> content from pages that do not need security?
This is likely because you have img tags in your HTML that point to images
that are not secure. Just change the links.
--
Tom Kaminski IIS MVP
http://www.microsoft.com/windowsser...ty/centers/iis/
http://mvp.support.microsoft.com/
http://www.iistoolshed.com/ - tools, scripts, and utilities for running IIS
| |
| Oscar Diaz 2005-10-10, 6:02 pm |
| Lets say I have this:
<TD vAlign=top><IMG height=5 alt=" "
src="images/spacer.gif" width=10
border=0></TD>
I still need to display the images. Do I place the images in a separate
area? Else how do I tell IIS that these are secure images? Thanks again.
"Tom Kaminski [MVP]" wrote:
> "Oscar Diaz" <OscarDiaz@discussions.microsoft.com> wrote in message
> news:EB5E33F4-E0EE-4B1C-945F-F32CC6EC2580@microsoft.com...
>
> This is likely because you have img tags in your HTML that point to images
> that are not secure. Just change the links.
>
> --
> Tom Kaminski IIS MVP
> http://www.microsoft.com/windowsser...ty/centers/iis/
> http://mvp.support.microsoft.com/
> http://www.iistoolshed.com/ - tools, scripts, and utilities for running IIS
>
>
>
| |
| Ken Schaefer 2005-10-11, 7:59 am |
| Those images will be requested using SSL.
You will need to look for links to inline resources (images, stylesheets,
activeX controls, anything) where the protocol is specified as http:// Any
link that is either relative (e.g. just the path) or specifies HTTPS://
should be fine.
Cheers
Ken
"Oscar Diaz" <OscarDiaz@discussions.microsoft.com> wrote in message
news:CA126CBB-17E5-4EDF-A402-04E1FAE80ADA@microsoft.com...
: Lets say I have this:
: <TD vAlign=top><IMG height=5 alt=" "
: src="images/spacer.gif" width=10
: border=0></TD>
:
: I still need to display the images. Do I place the images in a separate
: area? Else how do I tell IIS that these are secure images? Thanks again.
:
:
: "Tom Kaminski [MVP]" wrote:
:
: > "Oscar Diaz" <OscarDiaz@discussions.microsoft.com> wrote in message
: > news:EB5E33F4-E0EE-4B1C-945F-F32CC6EC2580@microsoft.com...
: > > We have recently installed a security certificate and are recieving
: > > message
: > > prompts that the site is displaying mixed content. Without configuring
IIS
: > > to
: > > disable these prompts can we eliminate these messages by separating
secure
: > > content from pages that do not need security?
: >
: > This is likely because you have img tags in your HTML that point to
images
: > that are not secure. Just change the links.
: >
: > --
: > Tom Kaminski IIS MVP
: > http://www.microsoft.com/windowsser...ty/centers/iis/
: > http://mvp.support.microsoft.com/
: > http://www.iistoolshed.com/ - tools, scripts, and utilities for running
IIS
: >
: >
: >
|
|
|
|
|