dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
774
share rss forum feed


DarkLogix
Texan and Proud
Premium
join:2008-10-23
Baytown, TX
kudos:3

Not seeing lock on my own site

Ok so I got a free SSL cert from startSSL.com and applied it to the web site I host on one of my VM's

its server 2008R2 vm so IIS7.5
and I figured maybe it was that the main page of www.domain-logix.net has a dilbert widget so I tried my RF.asp page (it does some web scraping to grab the RF stats from my cable modem for my PRTG monitor to read.)

but the lock doesn't show up there ether

just now while typing this I tried the index page for some files and that page shows the lock.

is there any way I can get the other two to work?

the asp page is not reachable (or shouldn't be) from external (might need to test that as the IP ACL UI is different than IIS6)

oh and I haven't yet forwarded 443 from external to my webserver, plan to after I'm done testing this cert.
--
semper idem
1KTzRMxN1a2ATrtAAvbmEnMBoY3E2kHtyv


cowboyro
Premium
join:2000-10-11
Shelton, CT
I believe the lock will not show if any part of the page comes over http [not https] - that includes any image, script, stylesheet...


DarkLogix
Texan and Proud
Premium
join:2008-10-23
Baytown, TX
kudos:3
Well the "some content is not displayed" message comes up I'd thought that by not clicking the "show all" thing I'd only be displaying HTTPS content.
--
semper idem
1KTzRMxN1a2ATrtAAvbmEnMBoY3E2kHtyv


DarkLogix
Texan and Proud
Premium
join:2008-10-23
Baytown, TX
kudos:3
reply to cowboyro
Ok well I've updated it so all the data is coming from my site
Copied the SWF from dilbert's site (will have to check that it still updates daily)

copied the W3C valid image and put a copy in the site's directory

so it has links to non https but all the content other than stuff the SWF is requesting is from my server.

any ideas of what else I can do?

the some couldn't be securely delivered message isn't coming up anymore

but the lock still is a no show.
--
semper idem
1KTzRMxN1a2ATrtAAvbmEnMBoY3E2kHtyv


cowboyro
Premium
join:2000-10-11
Shelton, CT
How does it look in IE? I found that IE is generally more useful at finding problems with secure websites.


DarkLogix
Texan and Proud
Premium
join:2008-10-23
Baytown, TX
kudos:3
its IE I'm looking at it with
it no longer asks if I want to show insecure content but the lock doesn't show up.
--
semper idem
1KTzRMxN1a2ATrtAAvbmEnMBoY3E2kHtyv


DarkLogix
Texan and Proud
Premium
join:2008-10-23
Baytown, TX
kudos:3
ok and suddenly after ignoring it for several hours and going back now the lock shows up.
--
semper idem
1KTzRMxN1a2ATrtAAvbmEnMBoY3E2kHtyv


cowboyro
Premium
join:2000-10-11
Shelton, CT
reply to cowboyro
Cache? I always use incognito when in doubt.


DarkLogix
Texan and Proud
Premium
join:2008-10-23
Baytown, TX
kudos:3
Now just to wait and make sure the dilbert widget still gets new stuff, I'm guessing they weren't rebuilding the SWF file daily.
--
semper idem
1KTzRMxN1a2ATrtAAvbmEnMBoY3E2kHtyv


DarkLogix
Texan and Proud
Premium
join:2008-10-23
Baytown, TX
kudos:3
and oh I just went to add the port forward and it seems it was already there

you think you could test?
»www.domain-logix.net/
--
semper idem
1KTzRMxN1a2ATrtAAvbmEnMBoY3E2kHtyv


cowboyro
Premium
join:2000-10-11
Shelton, CT
You're making http calls
Fire up Fiddler and you'll see them


DarkLogix
Texan and Proud
Premium
join:2008-10-23
Baytown, TX
kudos:3
Well can you see anything in the HTML that I should change?


cowboyro
Premium
join:2000-10-11
Shelton, CT
Nothing you can do.
It's the SWF that makes the calls, also one to
 
#ResultProtocolHostURLBodyCachingContent-TypeProcessCommentsCustom
7404HTTPcdn.gigya.com/wildfire/WFApi.ashx?f=gs&asver=as2&service=reports&services=reports&pid=10049921,904private, max-age=86400text/html; charset=utf-8iexplore:8556
 


DarkLogix
Texan and Proud
Premium
join:2008-10-23
Baytown, TX
kudos:3
reply to DarkLogix
Well the only ones I'm seeing are ones related to the dilbert widget, and it looks like its the widget doing it not the rest of the page.

wish that dilbert.com had ssl enabled
--
semper idem
1KTzRMxN1a2ATrtAAvbmEnMBoY3E2kHtyv


DarkLogix
Texan and Proud
Premium
join:2008-10-23
Baytown, TX
kudos:3
reply to cowboyro
whats that line 2?


cowboyro
Premium
join:2000-10-11
Shelton, CT
looks like a tracking call made by the SWF


DarkLogix
Texan and Proud
Premium
join:2008-10-23
Baytown, TX
kudos:3
Is there any software out there (for free) that could edit the swf?

I mean I'd guess that adobe has the full paid software but um that's a bit outa my league.
--
semper idem
1KTzRMxN1a2ATrtAAvbmEnMBoY3E2kHtyv


DarkLogix
Texan and Proud
Premium
join:2008-10-23
Baytown, TX
kudos:3
BTW what do you think of the "Future of Pizza Ordering" SWF?

Also I just moved all the SWF's to a sub dir for better organization.
--
semper idem
1KTzRMxN1a2ATrtAAvbmEnMBoY3E2kHtyv


cowboyro
Premium
join:2000-10-11
Shelton, CT
reply to DarkLogix
I don't think you can, not easily anyway... I might be wrong, I don't do Flash...
There are decomplilers but I have no idea how much you can get out of them - especially since SSL is a whole different animal.
Blocker: dilbert.com doesn't do HTTPS.
Work-around: you could re-code the whole thing yourself if you have nothing better to do, the XML file contains the urls of the strips and the associated date and id... so write your own backend to pull the images and serve them over https...
...BUT WHY???