Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

SSL not truely secure


Silverado05

Recommended Posts

I have some Js on my page that is keeping my SSL from being truely secrure. Instead of getting a green URL it's red and I have seem to trace it down to my Js. Can anyone tell me how to going about securing the Js so my SSL is completely secure.

 

-Thanks

Search the forum and contributions before posting. If that doesn't work, keep looking, then post. The forum is for seeking help and advice NOT for someone to do your work for you. Try to do something on your on, if you are going to run a shop then learn how it works.

Link to comment
Share on other sites

Keep the http:// links out of the coding of the page you're trying to secure, if possible.

 

J

Jason

 

Simple 1-2-3 Intructions on how to get, install and configure SSL

 

The Google Sandbox explained

 

Simple to follow instructions on how to change the look of your OSC

 

How To Make A Horrible OSC Website

 

my toolbox: All things WordPress-related - All things Adobe-related - PHP Designer 2007 - Codecanyon Junkie - Crimson Editor - Winmerge - phpMyAdmin - WS_FTP

 

my installed contributions: Category Banners, File Upload feature-.77, Header Tags, Sort_Product_Attributes_1, XSellv2.3, Price Break 1.11.2, wishlist 3.5, rollover_category_images_v1.2, Short_Description_v2.1, UPSXML_v1_2_3, quickbooks qbi_v2_10, allprods v4.4, Mouseover-effect for image-buttons 1.0, Ultimate_SEO, AAP 1.41, Auto Select State Value, Fast Easy Checkout, Dynamic SiteMap v2.0, Image Magic, Links Manager 1.14, Featured Products, Customer Testimonials, Article Manager, FAQ System, and I'm sure more ...

Link to comment
Share on other sites

That's not possible. I have a block that displays the lates topics from my forum on another server. If I remove the http the code below everything is secure but the mod doesn't work.

 

<script language="JavaScript" type="text/javascript" src="http://www.texascampingforum.com/forum/topics_anywhere.php?mode=show&f=a&n=10&jlp=y&b=non"></script>

 

So is their anyways to make the entire Js secure?

 

-Thanks

Search the forum and contributions before posting. If that doesn't work, keep looking, then post. The forum is for seeking help and advice NOT for someone to do your work for you. Try to do something on your on, if you are going to run a shop then learn how it works.

Link to comment
Share on other sites

Find the javascript file you're linking to (###.js) and copy it to your server, if it's okay and they don't mind.

 

J

Jason

 

Simple 1-2-3 Intructions on how to get, install and configure SSL

 

The Google Sandbox explained

 

Simple to follow instructions on how to change the look of your OSC

 

How To Make A Horrible OSC Website

 

my toolbox: All things WordPress-related - All things Adobe-related - PHP Designer 2007 - Codecanyon Junkie - Crimson Editor - Winmerge - phpMyAdmin - WS_FTP

 

my installed contributions: Category Banners, File Upload feature-.77, Header Tags, Sort_Product_Attributes_1, XSellv2.3, Price Break 1.11.2, wishlist 3.5, rollover_category_images_v1.2, Short_Description_v2.1, UPSXML_v1_2_3, quickbooks qbi_v2_10, allprods v4.4, Mouseover-effect for image-buttons 1.0, Ultimate_SEO, AAP 1.41, Auto Select State Value, Fast Easy Checkout, Dynamic SiteMap v2.0, Image Magic, Links Manager 1.14, Featured Products, Customer Testimonials, Article Manager, FAQ System, and I'm sure more ...

Link to comment
Share on other sites

That won't work because the file is needed on the OTHER server in order for this mod to work because it goes to my phpBB forum that is on a different server. So if copy it to the server my store is on the mod won't work. Any other ideas?

Search the forum and contributions before posting. If that doesn't work, keep looking, then post. The forum is for seeking help and advice NOT for someone to do your work for you. Try to do something on your on, if you are going to run a shop then learn how it works.

Link to comment
Share on other sites

I don't think there is a solution to this one, if I'm not mistaken. I mean, if you have to have the http:// link, you're always going to get that nonsecure message box thing. I googled for searches to this, but come up with the same thing: no solution, yet a lot of people having the same problem:

 

http://www.google.com/search?as_q=%22nonse...amp;safe=images

Jason

 

Simple 1-2-3 Intructions on how to get, install and configure SSL

 

The Google Sandbox explained

 

Simple to follow instructions on how to change the look of your OSC

 

How To Make A Horrible OSC Website

 

my toolbox: All things WordPress-related - All things Adobe-related - PHP Designer 2007 - Codecanyon Junkie - Crimson Editor - Winmerge - phpMyAdmin - WS_FTP

 

my installed contributions: Category Banners, File Upload feature-.77, Header Tags, Sort_Product_Attributes_1, XSellv2.3, Price Break 1.11.2, wishlist 3.5, rollover_category_images_v1.2, Short_Description_v2.1, UPSXML_v1_2_3, quickbooks qbi_v2_10, allprods v4.4, Mouseover-effect for image-buttons 1.0, Ultimate_SEO, AAP 1.41, Auto Select State Value, Fast Easy Checkout, Dynamic SiteMap v2.0, Image Magic, Links Manager 1.14, Featured Products, Customer Testimonials, Article Manager, FAQ System, and I'm sure more ...

Link to comment
Share on other sites

I don't get any error boxes or anything. Just the red URL instead of green which tells me it's not fully secure. I Just need this on my index page anyways. So how would I could about having it display on my index and not on any other pages. Index isn't secure page anyways and that's only where I need it.

 

-Thanks

Search the forum and contributions before posting. If that doesn't work, keep looking, then post. The forum is for seeking help and advice NOT for someone to do your work for you. Try to do something on your on, if you are going to run a shop then learn how it works.

Link to comment
Share on other sites

That won't work because the file is needed on the OTHER server in order for this mod to work because it goes to my phpBB forum that is on a different server. So if copy it to the server my store is on the mod won't work. Any other ideas?

so you phpBB doesn't have SSL? ask your host for free shared SSL and add that ... and you're set.

:-)

Monika

 

addicted to writing code ... can't get enough of databases either, LOL!

 

my toolbox: Textpad - Compare and Merge - phpMyAdmin - WS_FTP - Photoshop - How to search the forum

 

Interactive Media Award July 2007 ~ category E-Commerce

my advice on the forum is for free, PMs where you send me work are considered consultation which I charge for ...

Link to comment
Share on other sites

My host does have it, but I have no need for SSL for a forum board. I would be back to square one because then my forum wouldn't be completely secure because of the Js on it. My store uses a SSL from GoDaddy. Securing my forum wouldn't fix this problem because they are in two different servers. Thanks though

 

Anyone know how I can just include this box on just my index?

 

-Thanks

Search the forum and contributions before posting. If that doesn't work, keep looking, then post. The forum is for seeking help and advice NOT for someone to do your work for you. Try to do something on your on, if you are going to run a shop then learn how it works.

Link to comment
Share on other sites

My host does have it, but I have no need for SSL for a forum board. I would be back to square one because then my forum wouldn't be completely secure because of the Js on it. My store uses a SSL from GoDaddy. Securing my forum wouldn't fix this problem because they are in two different servers. Thanks though

 

Anyone know how I can just include this box on just my index?

 

-Thanks

I have completely lost you. Why on earth would creating a 3rd lever shared SSL domain need to be used by your board??? You set up that 3rd level domain and it just means that should you TRY to access your site by using that domain it will not give you a page not found but a secure file.

:-)

Monika

 

addicted to writing code ... can't get enough of databases either, LOL!

 

my toolbox: Textpad - Compare and Merge - phpMyAdmin - WS_FTP - Photoshop - How to search the forum

 

Interactive Media Award July 2007 ~ category E-Commerce

my advice on the forum is for free, PMs where you send me work are considered consultation which I charge for ...

Link to comment
Share on other sites

I think you have misread something somewhere as you're talking about something completely irrelivant to my problem.

 

You are suggesting I use a SSL for my phpBB board but that is pointless and no need to have a SSL on a forum board. That wouldn't solve my problem anyways.

 

I just need to do what was suggested earlier and just have the box dedicated to show in the index page and not any other pages or secure pages.

Search the forum and contributions before posting. If that doesn't work, keep looking, then post. The forum is for seeking help and advice NOT for someone to do your work for you. Try to do something on your on, if you are going to run a shop then learn how it works.

Link to comment
Share on other sites

that's sad ... YOU do not follow me.

 

including the box only in index will not help you. There is redirecting to a https: version of index several times in osC.

:-)

Monika

 

addicted to writing code ... can't get enough of databases either, LOL!

 

my toolbox: Textpad - Compare and Merge - phpMyAdmin - WS_FTP - Photoshop - How to search the forum

 

Interactive Media Award July 2007 ~ category E-Commerce

my advice on the forum is for free, PMs where you send me work are considered consultation which I charge for ...

Link to comment
Share on other sites

ok last try to explain ...

 

see this cake site here ... I removed SSL for you from the catalog part of it

 

http://www.monikamathe.com/hollywood/login.php

 

click on login, no ssl, no error message

 

I have a 3rd level shared SSL for that domain of course (no admin should ever be without one).

 

so if you replace that url by

 

https://monikamathe.c2.hostexcellence.com/h...ywood/login.php

 

you get a secure page, not a page not found, no error message of any kind. The config file of that catalog has NOT been touched. this is an alias, if someone doesn't know this special url, they will never see it.

 

This is EXACTLY what you need if you want to include pages for your board into secure pages of your shop.

 

'nuff said. No need to trust me of course. ( and here I'm getting frustrated)

:-)

Monika

 

addicted to writing code ... can't get enough of databases either, LOL!

 

my toolbox: Textpad - Compare and Merge - phpMyAdmin - WS_FTP - Photoshop - How to search the forum

 

Interactive Media Award July 2007 ~ category E-Commerce

my advice on the forum is for free, PMs where you send me work are considered consultation which I charge for ...

Link to comment
Share on other sites

that's sad ... YOU do not follow me.

 

including the box only in index will not help you. There is redirecting to a https: version of index several times in osC.

 

Not while being secure though. BUT at least having it only on the index it while allow the crical pages that need to be fully secrure, secure. I.E. the checkout, my account pages, etc. Index really has no reason to be secure and on my site it's not.

 

What does having a SSL on my forum going to do though? My forum is on a completely different site and server so it wouldn't matter it it's secure or not. The problem is with the SSL not being fully secure on my store because of the http:// within the Js. Then not to mention having an SSL on my forum I would be back to square one but on my forum because it has Js links, etc on it. That's what I am trying to tell you.

Search the forum and contributions before posting. If that doesn't work, keep looking, then post. The forum is for seeking help and advice NOT for someone to do your work for you. Try to do something on your on, if you are going to run a shop then learn how it works.

Link to comment
Share on other sites

ok last try to explain ...

 

see this cake site here ... I removed SSL for you from the catalog part of it

 

http://www.monikamathe.com/hollywood/login.php

 

click on login, no ssl, no error message

 

I have a 3rd level shared SSL for that domain of course (no admin should ever be without one).

 

so if you replace that url by

 

https://monikamathe.c2.hostexcellence.com/h...ywood/login.php

 

you get a secure page, not a page not found, no error message of any kind. The config file of that catalog has NOT been touched. this is an alias, if someone doesn't know this special url, they will never see it.

 

This is EXACTLY what you need if you want to include pages for your board into secure pages of your shop.

 

'nuff said. No need to trust me of course. ( and here I'm getting frustrated)

 

 

 

I know exactly what you are saying. You are saying take the URL within the Js that is pulling the data from my forum and make it a secrure URL like

 

https://secure.bluehost.com/~txcampin/texas...jlp=y&b=non

 

That won't work because it won't allow the Js script to work. It's like having a window that is painted black.

Search the forum and contributions before posting. If that doesn't work, keep looking, then post. The forum is for seeking help and advice NOT for someone to do your work for you. Try to do something on your on, if you are going to run a shop then learn how it works.

Link to comment
Share on other sites

http://www.texascampingforum.com/forum/top...jlp=y&b=non

 

3rd level domain enabled for this site?

THIS gives a page not found, so nom, not enabled. cannot work.

https://secure.bluehost.com/~txcampin/texas...irect=index.php

:-)

Monika

 

addicted to writing code ... can't get enough of databases either, LOL!

 

my toolbox: Textpad - Compare and Merge - phpMyAdmin - WS_FTP - Photoshop - How to search the forum

 

Interactive Media Award July 2007 ~ category E-Commerce

my advice on the forum is for free, PMs where you send me work are considered consultation which I charge for ...

Link to comment
Share on other sites

http://www.texascampingforum.com/forum/top...jlp=y&b=non

 

3rd level domain enabled for this site?

THIS gives a page not found, so nom, not enabled. cannot work.

https://secure.bluehost.com/~txcampin/texas...irect=index.php

 

 

That is not an actual working URL, it was just for example purposes to display I knew you were trying to say. That's why it doesn't work. I don't like posting actual working links to my sites on forums if I don't have to.

 

I have fixed the problem anyways, Thanks though.

Search the forum and contributions before posting. If that doesn't work, keep looking, then post. The forum is for seeking help and advice NOT for someone to do your work for you. Try to do something on your on, if you are going to run a shop then learn how it works.

Link to comment
Share on other sites

That is not an actual working URL, it was just for example purposes to display I knew you were trying to say. That's why it doesn't work. I don't like posting actual working links to my sites on forums if I don't have to.

 

I have fixed the problem anyways, Thanks though.

 

Hello Silverdo,

 

how did you find the solution for this? it might help a problem i have been having recently with js.

 

Cheers

The sooner you fall behind, the more time you'll have to catch up.

Link to comment
Share on other sites

I used XML instead. This worked for my isntance but I don't know what your Js is being used for.

Search the forum and contributions before posting. If that doesn't work, keep looking, then post. The forum is for seeking help and advice NOT for someone to do your work for you. Try to do something on your on, if you are going to run a shop then learn how it works.

Link to comment
Share on other sites

How do you secure your Admin with the SSL connection?

Norm,

 

you change your admin config file to SSL and specify the SSL url for the top 3 entries

 

then you change your admin .htaccess file adding a redirect to SSL ... but this is not necessary, if you omit it the non-SSL call will give you a page not found. Hence admin can only be accessed via SSL call

:-)

Monika

 

addicted to writing code ... can't get enough of databases either, LOL!

 

my toolbox: Textpad - Compare and Merge - phpMyAdmin - WS_FTP - Photoshop - How to search the forum

 

Interactive Media Award July 2007 ~ category E-Commerce

my advice on the forum is for free, PMs where you send me work are considered consultation which I charge for ...

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...