|
Home > Archive > IIS Server Security > February 2006 > SSL
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
|
|
| janetb 2006-02-14, 5:53 pm |
| I have a site comprised most of asp pages with ss includes for the headers,
footers, etc. I have a Verisign ceritficate installed. On the page
requiring the certificate, a prompt is given saying some of the site is not
secure do you want to display yes/no. I've tried yes and no and can not see
a difference. I've made any images on the includes hard links using https:.
All images are located on the same server.
Any ideas?
| |
| Ken Schaefer 2006-02-15, 3:03 am |
| I don't think this is an IIS question.
Somewhere in your page there is a request to a non-SSL resource somewhere.
That is what is causign the browser to generate the prompt.
Can you post the HTML source?
Cheers
Ken
"janetb" <janetb@discussions.microsoft.com> wrote in message
news:63B87E85-67BA-4794-B813-E63777829C0A@microsoft.com...
:I have a site comprised most of asp pages with ss includes for the headers,
: footers, etc. I have a Verisign ceritficate installed. On the page
: requiring the certificate, a prompt is given saying some of the site is
not
: secure do you want to display yes/no. I've tried yes and no and can not
see
: a difference. I've made any images on the includes hard links using
https:.
: All images are located on the same server.
:
: Any ideas?
| |
| Ratatooie 2006-02-17, 10:41 pm |
| Check for the flash detection script.
If you use a SWF (shockwave) or fl? (flash), the application gives you some
code, one of which checks the version the client has installed against the
macromedia.com server. That could be causing the problem.
Just go into the flash code and pull that line out. (It won't hurt, people
get that done so many times elsewhere you don't need it on your site.)
Also check for absolute links anywhere in your site. You should be using
absolute "from the root" links, starting with a slash and using the whole
path... i.e NOT ../images/image.gif but rather /images/image.gif and just
"/" for the home page link.
"Ken Schaefer" <kenREMOVE@THISadOpenStatic.com> wrote in message
news:%23k2uXQfMGHA.2472@TK2MSFTNGP11.phx.gbl...
>I don't think this is an IIS question.
>
> Somewhere in your page there is a request to a non-SSL resource somewhere.
> That is what is causign the browser to generate the prompt.
>
> Can you post the HTML source?
>
> Cheers
> Ken
>
> "janetb" <janetb@discussions.microsoft.com> wrote in message
> news:63B87E85-67BA-4794-B813-E63777829C0A@microsoft.com...
> :I have a site comprised most of asp pages with ss includes for the
> headers,
> : footers, etc. I have a Verisign ceritficate installed. On the page
> : requiring the certificate, a prompt is given saying some of the site is
> not
> : secure do you want to display yes/no. I've tried yes and no and can not
> see
> : a difference. I've made any images on the includes hard links using
> https:.
> : All images are located on the same server.
> :
> : Any ideas?
>
>
|
|
|
|
|