» Home » secure » Page 1
Find non-secure http request being sent on secure page triggering IE6 “non-secure items notice”
Category : Development Tools & Services

I have a page that is under SSL.


However, in IE6, I get a notification:


"This page contains both secure and non-secure items" etc.


I've looked at all the HTTP requests for that page in both Firebug and Wireshark, and non of it seems to be sent over plain HTTP, all the resources are being fetched over SSL/TLS. However, IE6 still gives the non-sure items noti


View Replies


Issuing non-secure cookie over a secure connection results in pseudo-secure cookie
Category : Programming Languages

When Firefox receives a cookie via an HTTPS connection, it appears to treat it as a secure cookie, even though the server did not send it as a secure cookie.


When I inspect the cookie from within Firefox, it displays "Send For: Encrypted connections only". When Firefox sends the cookie to the server in subsequent secure requests, inspection of the cookie in Java (Cookie.getSecure()


View Replies


How to get jetty to send jsessionid-cookies with the secure-flag when using a secure channel
Category : Development Tools & Services

I am using Tomcat in my production environment and jetty in my testing environment (via jetty-maven-plugin).


Tomcat sets the secure-flag on a jsessionid-cookie, when it is sendig it over a secure channel (https), which looks like a good idea to me, becaus it prevents the session from being exposed, when the user klicks on a http://-link. But Jetty does not so!


I would l


View Replies


How to structure content of PHP includes for use in both non-secure (http://) and secure (https://) areas and across multiple directories?
Category : PHP

I have a footer file that includes links and images. This file is used on my main homepage, and in multiple directories. It is also used on the secure part of my website (https://) after a user signs in.


What is the best way to organize the links so that (1) they can be used in the non-secure (http://) and secure (https://) areas of my site, while (2) also being able to use the


View Replies


Secure login with additional context information passed through (which also needs to be secure)
Category : Programming Languages

My web application will be launched through existing thick client applications. When launched, an HTTP POST request will be generated including information like the userID and additional context information (basically stuff like the target user's name, birthday, etc.).


My plan for authentication is for there to be a look-up table in the database. If the username is already there, au


View Replies


Is it possible/valid to have a TCP connection with secure login only, but non-secure messages?
Category : Programming Languages

Say I am writing a chat server and client that allows users to login with their user-name and password. Now I could just send and receive the information as plain-text but there is the risk that the information may be intercepted. So the socket should be secured to protect the user. I am not interested in certificates or verifying identity, I just want to make sure that the information supplied


View Replies


HTTPS does not work - Secure and Non secure data on web page?
Category : Programming Languages

I have a browser compatibilty problem with https? I have SSL installed and is in usage. Until today morning, my https part is working well. From then, Https is shown as https(with slashed in red color) saying the page has some insecure content.
I have not changed any code and suddenly i see this problem in chrome. In IE 8, i see the same problem but on every page, it shows me a popup if i


View Replies


How to Get Rid of a Page That Is Displaying Secure & Non-Secure Items?
Category : Internet
Some Web pages may contain information that is not secure. When this is the case, Internet Explorer is configured, by default, to present you with a message that the page contains both secure and non-secure items. You then have the option to open the page if you feel it is safe. If you no longer wish to display non-secure items in a Web page, you can disable the display mixed content setting of th

View Replies


Getting a secure session object from a non secure page in ASP
Category : Development Tools & Services

I'm maintaining a system built in ASP.


The login process is in SSL. Meaning, when the user clicks on "Login", his user name and password are sent securely to the server.
The login process produces a Session object, which is the ID of the now logged-in user.


After finishing the login process, the page redirects the browser to a non secure page. This page tries to acc


View Replies


Secure paperclip urls only for secure pages
Category : Programming Languages

I'm trying to find the best way to make paperclip urls secure, but only for secure pages.


For instance, the homepage, which shows images stored in S3, is http://mydomain.com and the image url is http://s3.amazonaws.com/mydomainphotos/89/thisimage.JPG?1284314856.


I have secure pages like https://mydomain.com/users/my_stuff/49 that has images stored in S3, but the S3 proto


View Replies


Next
2012 / 2017 Copyrights BigHow , All Rights Reserved .