Running forum over an SSL

RE: Running forum over an SSL (Guest)

Tue, 17 Oct 2006 01:34:42 GMT

We have the same problem, but have only a frameset with one frame. Frame src points to a secure webpage. Clickin No to the popup still displays the entire content. Clicking Yes removes the padlock-icon from the browser. This alarms our customers.

<frameset>

</frameset>

doesn't display the popup, but ones you ad the <frame src="https://..."> you get the popup.

Microsoft KnowledgeBase says itäs a bug in Content Advisor and instructs to turn Content Advisor off...

We can't change the single frame to an iframe, because of our server setup and because we don't want to use an iframe.

-Incu

RE: Running forum over an SSL (JodyG)

Wed, 12 Apr 2006 06:21:09 GMT

We resolved this by changing line 143 of rtejs/richtext.js from:

 document.writeln('<iframe id="' + rte + '" name="' + rte + '" style="width:' + width + 'px; height:' + height + 'px;" class="rteFrame" src=""></iframe>');

 document.writeln('<iframe id="' + rte + '" name="' + rte + '" style="width:' + width + 'px; height:' + height + 'px;" class="rteFrame" src="blank.html"></iframe>');

Make sure you have got a blank html file called blank.html in the root folder of the forum.

RE: Running forum over an SSL (Samuel)

Wed, 28 Dec 2005 15:05:15 GMT

it is an iframe problem. We use iframe too in "post reply" - this is part of the WYSIWYG editor.

RE: Running forum over an SSL (jazzman)

Wed, 28 Dec 2005 14:25:19 GMT

If I don't enable fast reply, then I have to use Post Reply, which itself generates the same bothersome pop-up message. So now the question becomes: what in Post Reply is IE objecting to? Apparently it's not an iframe problem again, or is it?

Lee

RE: Running forum over an SSL (Samuel)

Wed, 28 Dec 2005 14:01:30 GMT

"why" - I don't know why IE works this way either

what can I do about it - 1. don't enable fast reply for your forum or 2. don't use SSL for the forum

RE: Running forum over an SSL (jazzman)

Wed, 28 Dec 2005 13:57:41 GMT

Why? In what file is the code? And what can I do about it?

Lee

RE: Running forum over an SSL (Samuel)

Wed, 28 Dec 2005 13:18:44 GMT

it is the iframe used in "fast reply" (WYSIWYG editor) that causes IE to respond this way.

RE: Running forum over an SSL (jazzman)

Wed, 28 Dec 2005 11:43:47 GMT

Samuel,

With Content Advisor turned off on my browser, I'm encountering the old problem often discussed in this forum of the pop-up message "This page contains both secure and nonsecure items" on an SSL site, yet I see no cause of it. It happens here: https://www.ohio-academy-of-audiology.org/forum/tm.asp?m=1 Viewing the source yields no occurrence of "http" without the "s". Or are there some links hidden in the javascript routines that are called?

Lee

RE: Running forum over an SSL (Samuel)

Mon, 14 Mar 2005 20:53:11 GMT

I am not sure what you are referring to. We are talking about iframe here, not regular frames.

RE: Running forum over an SSL (Guest)

Mon, 14 Mar 2005 04:56:51 GMT

<iframe name=" bufferFrame" style=" display:none;" src=" blank.html" ></iframe>

my first page on my site is my index page which has frames in it , and i have discovered that thats where the problem is (frames). so where do i put ur piece of code??

RE: Running forum over an SSL (FreddyD)

Wed, 07 Jan 2004 22:01:38 GMT

the only way - disallow someone to post http pics on an https site.

RE: Running forum over an SSL (Guest)

Wed, 07 Jan 2004 07:53:47 GMT

I came across another broblem...if you have hotlinks from your https site to 'unsecure' http site
(mine is something like this:)
Someones ICQ Status: <img onerror="this.src='images/icq_offline.gif';" src="http://web.icq.com/whitepages/online?icq=123456789&img=5">

with http rather than https address...

you will get the same message popping out i'm still looking for a solution to fix this...if anyone has any ideas please share

RE: Running forum over an SSL (Samuel)

Tue, 21 Oct 2003 12:21:06 GMT

Are you saying you are "invoking" the forum from an ASPX application? What do you mean by invoking??

RE: Running forum over an SSL (Guest)

Tue, 21 Oct 2003 00:08:39 GMT

Hi,

I'm facing the same Security Alert Problem when i invoke my asp page from an aspx,what should be the issue ,can anyone help in this.

Vanitha

RE: Running forum over an SSL (Guest)

Sat, 18 Oct 2003 08:41:23 GMT

Hi Samuel!
I also solved my problem using this logic. Thanks.

Vijay .r