PaulDotCom mailing list archives
HTTPS Question
From: baconzombie at gmail.com (Bacon Zombie)
Date: Thu, 13 May 2010 00:23:09 +0100
I ready like this function in the source code: *function keepFunction()* *{* * msg = "DO NOT REMOVE THIS FUNCTION";* *}* And to answer your question this is a really bad item. BaconZombie On 12 May 2010 21:41, Craig Freyman <craigfreyman at gmail.com> wrote:
Is there some security benefit I am not aware of for using https connections within frames and presenting them over http to the user? This site http://webcentral.du.edu does such a thing and I don't understand why. If we spend time training people to look for https and certificate errors, why would they do this? When you click on "security information" at the bottom it says: *Is this Site Secure?* Yes, webCentral.du.edu <http://webcentral.du.edu/> uses a Security certificate provided by VeriSign. *Where is the little key or lock then?* webCentral uses frames throughout. The login page is actually a frame within a normal http: page. It is still secure, you just can't see the key or lock. Someone please enlighten me. _______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
-------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20100513/23ccb9ef/attachment.htm
Current thread:
- HTTPS Question Craig Freyman (May 12)
- HTTPS Question Bacon Zombie (May 12)