agadak Posted October 28, 2002 Share Posted October 28, 2002 I keep getting a Security Alert box saying the security certificate was issued by a company you have not chosen to trust The name of the security certificate does not match the name of the site (It is a virtual domain, so I assume this is why I get this error). Can I get rid of this warning somehow? Or do I need to get a commercial solution Are most of you using a "commercial" IE Verisign or Thawte certificate on your sites? Thanks Link to comment Share on other sites More sharing options...
mattice Posted October 28, 2002 Share Posted October 28, 2002 you can get rid of this warning by presenting your clients a valid certificate for that specific domain. You need to buy a certificate from a 'trusted authority' like Verisign or whatever. You have alot of cheap deal cerificate sites, do a search on google for them. "Politics is the art of preventing people from taking part in affairs which properly concern them" Link to comment Share on other sites More sharing options...
osfdeath Posted October 28, 2002 Share Posted October 28, 2002 Or just leave it as it is. All it is saying to the person is that the store is using a self signed certificate. Either way - the information is still incrypted is it not? (granted, most would feel more secure about having a certificate signed by verisign etc - personally I dislike verisign) Troy Link to comment Share on other sites More sharing options...
mattice Posted October 28, 2002 Share Posted October 28, 2002 the info is still encrypted but it might not be accepted as a valid SSL transaction by court / cardprocessor etc. And the fact it looks rather unprofessional counts strong, I wouldn't shop with someone that has a 'SnakeOil' cert :) I know it is a ripp-off sort of thing but look at it as a nessecary evil. Sorta like Microsoft in general ;) "Politics is the art of preventing people from taking part in affairs which properly concern them" Link to comment Share on other sites More sharing options...
agadak Posted October 28, 2002 Author Share Posted October 28, 2002 OK, but the store will be on a VIRTUAL DOMAIN. Ex. My real domain is : www.firststore.com My virtual domai is : www.secondstore.com <---Where site is published to. Is there a way to fix this so that the site is seen as "secondstore.com"? I believe this would get rid of the warning. The box states that the cert is being issued by a domain with a different name than the one being used... Link to comment Share on other sites More sharing options...
mattice Posted October 29, 2002 Share Posted October 29, 2002 you can' fool the browser that easily. The certificate has the domain HARDCODED inside so a cert for 123.com will give the warning if used on 456.com. Even subdomains give warnings; www.myshop.com vs secure.myshop.com.... "Politics is the art of preventing people from taking part in affairs which properly concern them" Link to comment Share on other sites More sharing options...
networkdad Posted October 29, 2002 Share Posted October 29, 2002 You'll need a static IP address. Most hosts sell them for a fee. I paid $20 one time fee for a static IP from my host. Then, go snag an SSL cert. Rackshack.net has them for $50 right now. Link to comment Share on other sites More sharing options...
agadak Posted October 29, 2002 Author Share Posted October 29, 2002 I have a static IP (using a business account on DSL actually, that can be boosted to 7mb up / 6 mb down if I need it Let's hope!). So that is not the problem. If I purchase a SSL from rackshack, will this go away? I'd hate to pay $50 bucks and still get the warning. I know I'm running on https and I HATE to buy a third party certificate, but if it makes the customer feel at easy.... Thanks ALL! This site ROCKS! Link to comment Share on other sites More sharing options...
networkdad Posted October 29, 2002 Share Posted October 29, 2002 The SSL cert from rackshack is actually a GeoCert QuickSSL cert - It is a 128bit encryption cert, and is official in every way. Once i installed it on my server, i get this nice little yellow icon with no warnings. Good luck. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.