 |
|
|
|
Next: Can't authenticate using Proxy
|
| Author |
Message |
External
Since: Dec 17, 2003
Posts: 4
|
(Msg. 1) Posted: Wed Dec 17, 2003 5:42 am
Post subject: Any tools/hints for tracking down secure/non-secure contents problem?
Archived from groups: microsoft>public>inetserver>iis (more info?)
|
|
|
Hi,
We're running a secure (SSL) website on IIS on a Windows 2000 Advanced
Server (SP4) system, and we're trying to track down a problem where we
are occasionally getting a warning popup saying that "the page contains
secure and non-secure items".
We've checked all the "usual suspects", including searching all our html
and ASP pages for absolute http: URLs and for IFRAME, but so far no
luck. I've also been scanning the IIS logs, looking for any accesses to
other than port 443, but found none.
Is anyone aware of any other things that might cause this warning to pop
up? Or, any ideas or tools that might help to figure out what's going
on?
We've been trying to track this problem down for awhile, and I thought
that I'd try this NG...
Thanks in advance,
Jim |
|
| Back to top |
|
 | |
External
Since: Aug 28, 2003
Posts: 101
|
(Msg. 2) Posted: Wed Dec 17, 2003 5:42 am
Post subject: Re: Any tools/hints for tracking down secure/non-secure contents problem? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
|
|
| Back to top |
|
| |
External
Since: Dec 17, 2003
Posts: 4
|
(Msg. 3) Posted: Wed Dec 17, 2003 9:49 am
Post subject: Re: Any tools/hints for tracking down secure/non-secure contents [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Atrax,
Unfortunately, no, as the server is only on an intranet right now.
As I mentioned, we've searched for IFRAMEs. I know that we don't use
Flash, and I also know that we don't have any applets.
I'm pretty sure that we don't use any frames, but we do use DIVs. Not
sure about stylesheets.
For stylesheets, what kind of things to look for? I think they're all
accessed using relative URLs.
Jim
Atrax wrote:
>
> got a URL we can look at?
>
> could be images, stylesheets, javascripts, Iframes, frames, applets,
> flash, whatever...
>
> ________________________________________
> Atrax. MVP, IIS
<font color=purple> > <a style='text-decoration: underline;' href="http://rtfm.atrax.co.uk/</font" target="_blank">http://rtfm.atrax.co.uk/</font</a>>
>
> newsflash : Atrax.Richedit 1.0 now released.
<font color=purple> > <a style='text-decoration: underline;' href="http://rtfm.atrax.co.uk/infinitemonkeys/components/Atrax.RichEdit/</font" target="_blank">http://rtfm.atrax.co.uk/infinitemonkeys/components/Atrax.RichEdit/</font</a>>
>
> *** Sent via Developersdex <a style='text-decoration: underline;' href="http://www.developersdex.com" target="_blank">http://www.developersdex.com</a> ***
> Don't just participate in USENET...get rewarded for it!<!-- ~MESSAGE_AFTER~ --> >> Stay informed about: Any tools/hints for tracking down secure/non-secure conten.. |
|
| Back to top |
|
| |
External
Since: Dec 17, 2003
Posts: 4
|
(Msg. 4) Posted: Wed Dec 17, 2003 8:08 pm
Post subject: Re: Any tools/hints for tracking down secure/non-secure contents [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Atrax et al,
I think that we've found the problem, and I have to adjust what I said
earlier. We found several pages that had an IFRAME tag on them, with
"src=about:blank". We're not quite sure how these IFRAMEs got there  ,
but by making the src point to a page on the website, we got rid of the
warning.
Ohaya wrote:
>
> Atrax,
>
> Unfortunately, no, as the server is only on an intranet right now.
>
> As I mentioned, we've searched for IFRAMEs. I know that we don't use
> Flash, and I also know that we don't have any applets.
>
> I'm pretty sure that we don't use any frames, but we do use DIVs. Not
> sure about stylesheets.
>
> For stylesheets, what kind of things to look for? I think they're all
> accessed using relative URLs.
>
> Jim
>
> Atrax wrote:
> >
> > got a URL we can look at?
> >
> > could be images, stylesheets, javascripts, Iframes, frames, applets,
> > flash, whatever...
> >
> > ________________________________________
> > Atrax. MVP, IIS
<font color=green> > > <a style='text-decoration: underline;' href="http://rtfm.atrax.co.uk/</font" target="_blank">http://rtfm.atrax.co.uk/</font</a>>
> >
> > newsflash : Atrax.Richedit 1.0 now released.
<font color=green> > > <a style='text-decoration: underline;' href="http://rtfm.atrax.co.uk/infinitemonkeys/components/Atrax.RichEdit/</font" target="_blank">http://rtfm.atrax.co.uk/infinitemonkeys/components/Atrax.RichEdit/</font</a>>
> >
> > *** Sent via Developersdex <a style='text-decoration: underline;' href="http://www.developersdex.com" target="_blank">http://www.developersdex.com</a> ***
> > Don't just participate in USENET...get rewarded for it!<!-- ~MESSAGE_AFTER~ --> >> Stay informed about: Any tools/hints for tracking down secure/non-secure conten.. |
|
| Back to top |
|
| |
| Related Topics: | Secure FTP - I need help setting up a secure (encrypted) FTP site. I use IIS 5.0 Can anyone offer any good advice, resources? thanks! jason.whitaker@titan.com
secure site ? NoT! - oops. Go here. http://www.wellsfargo.com/ When you sign on you are not on a secure page. Therefore your userid and password are not secure. Sure, they send you to a SSL page, but that is after you have sent your userid and password over the net. Am I...
secure site? NOT! ? - go here:
How to make IIS5.0 secure? - Hi, how can I make IIS5 safe as webserver on the Internet? -
IIS problem with secure chunked transfer - Hi IIS gurus, My Java applet sends large POST requests to an IIS 5.0 ISAPI extension using chunked transfer. This works fine for secure servers (defined as "Require SSL"). Alas, when I define the IIS virtual dir as "Require client certif... |
|
You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
|
|
|
|
FAQ
Profile
Private Messages
Log in
