Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 638
  • Last Modified:

SSL Problem

We have a form on a secure server and the URL is: https://www.antiguayachtshow.com/register.php

Some of our visitors encounter the following pop up error message:
You have requested an encypted page that contains some unencrypted information.
Information that you see or enter on this page could easily be read by a third party.

The only unencrypted information that I can think is included is the captcha generator but being a non technical person, I could we be wrong.

Does anyone have any ideas how we can go about solving this problem?
0
canu
Asked:
canu
2 Solutions
 
artsecCommented:
Hello,

This is a common issue when you implement SSL certificate. This error is produced by Internet Explorer / Google Chrome when content (e.g., an image or java script) on a secure website is being loaded through a non-secure source. When viewing the page's source code, you will notice that content on the site is being loaded through "http://" rather than "https://".

When users with Internet Explorer /  Google Chrome access the website, they will get the warning "This page contains both secure and nonsecure items. Do you want to display the nonsecure items?"

To resolve the problem, you will need to replace the standard http references on your website so that objects are loaded instead through https. Any content that cannot be loaded securely should not be loaded to that website if you do not want users to experience the error.

Though Firefox does not display an error, it will show a red line through the standard golden lock icon, showing that the page is displaying secure and non-secure content.

Examples:
This image produce warning message :<img src="http://www.DOMAIN.com/images/image.jpg" /> when you call it from a page over SSL. You need to modified as follow:<img src="https://www.DOMAIN.com/images/image.jpg" />
 
0
 
mattjp88Commented:
artsec explained it really well.  The only file I see on the page that is being loaded from a non-secure domain is from captchator.com.  Doing some checking about captchator.com, it doesn't seem they have an SSL version of their API, so my may need to either setup a proxy or switch to a different captcha system to avoid the warning.

-Matt
0
 
canuWebmasterAuthor Commented:
Thanks a million for your detailed responses, it was much appreciated. I have referred this back to the developer so hopefully this will be resolved sooner rather than later. Thanks again!
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now