Secure connections: how secure are they?
......... both useful and malicious information can be transmitted via network
connections. Standard solutions protect computers against threats present in
standard network connections, but aren't able to counter threats present in
secure connections. Verifying the contents of a secure connection is
impossible by virtue of its secure nature, as demonstrated by the different
types of protection listed above. As a result, malicious data within secure
channels can cause a significant amount of damage, and sometimes more than if
it were to be transmitted via a standard, non-s...Redirect to a page secured by basic authentication from a non-secure page?
Hello,I am working on an ASP.NET 2.0 webapp which is secured via our own mechanism which is similar to forms based security. Thus, the web application itself has anonymous authentication enabled.However, our help site, a straight html app that is low sensitivity, but sensitive enough that we want to prevent the casual browser from viewing it, is secured via Basic Authentication.The question is, is there some way by which our main application can perform a redirect or transfer to the help site w/out prompting the user for credentials?
Basically, what happens is that ther...security too secure
Summary: security too secure
The security thing won't let me in this sight no matter how I accept,
confirm, get certificate, etc.
Browser Details: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.4; en-GB; rv:1.9.1b4) Gecko/20090423 Firefox/3.5b4
From URL: http://hendrix.mozilla.org/
Note to readers: Hendrix gives no expectation of a response to this feedback
but if you wish to provide one you must BCC (not CC) the sender for them to
...when is secure, secure?
I wrote a custom authentication handler for PureFTPD, using a combination of
authentication methods, for about 4 different types of users.
So far, from testing it, it does look to work properly, and does it's job
pretty well (and fast). I use #!/usr/bin/perl -W as well as use Strict, and
use warnings, and the code returns no errors or warnings when run.
I am right to presume that this basically only really tells me the my syntax
and structure of the application is right? What's a good way to see whether
it is actually SECURE... There is a couple of lines of...Can't connect to secure internet, only non secure.
I cannot connect to my wpa secure wireless internet connection with dell
2300 pc, it will only connect to my neighbors non secure wireless
connection. I've tried a Trendnet TEW-443PI wireless card, a D-Link
WDA-1320 wireless card even a D-Link WUA-2340 rangebooster g usb 2.0
adapter. All three are doing the same thing on the dell 2300. I've
reformatted time and time again with the same results. I have two
other's an asus desktop and an hp laptop that work excellent on my
secure wireless internet. I'm using a D-Link DIR-625 Rangebooster N
Router. Has anyone else have t...How secure is secure?
Thanks to this group and all the high tech individuals who frequent it I
have learned how to protect my PC from the inside out. But what about
security risks to my info 'before' it gets to my computer? Like my mail
box on the server. Could someone hack into that and thumb through my
If so, how would I ever know?
(The short story)
We have a rogue employee at my work who one day decided to run the web
site, she got in tight with the ISP, got tools to set and delete
passwords on a protected directory on the server. Who knows if she has
telnet access to other things, li...How to suppress Security Alert "You are about to be redirected to a connection that is not secure"
Hi, I have a login page which I would like to turn on the SSL for signing in. How can I turn off / suppress the security alertSecurity Alert: "You are about to be redirected to a connection that is not secure" There are many sites can achieve this such as ClixGalore which is also written in .NET. Any info would be greatly appreciated. Regards,Paul
That's a user preference as to how he's got his browser set up. No way that I know of to do it through code.NC......Managing non-critical and non-security updates
I deploy WSUS server in my Consolidated Server HMC 3.5 environment.
My WSUS settings are:
- Synchronize all update classifications for available in WSUS HMC products (Exchange 2003, ISA 2004, SQL Server and Windows Server 2003).
- Automatically approve for detection all update classifications.
- Automatically approve for installation Critical updates and Security updates.
So, my WSUS server help my to automatically...Mixing Non-Secure + Secure Pages??
Back in November I was describing a problem I was having when switching my application from non-secure mode to secure mode.
I finally had a chance to look into the problem and discovered what is causing my problem!
My IW application has 8 pages (forms) and the first 6 need to be in non-secure mode. The last two require secure mode. In IW10, I could accomplish this my just calling:
WebApplication->SwitchToSecure() from a non-secure page and then show my page requiring secure mode.
In IW 12, this DOES NOT WORK!! What happens is IW starts a new session. If I start my session in se...Mixed Secure and Non Secured Content
I didn't get a feel for how safe SSL pages are that contain both secure
and non secured content. If a page contains both is the secured content
(say a form or password entry) safe?
John Pearce wrote:
>I didn't get a feel for how safe SSL pages are that contain both secure
>and non secured content. If a page contains both is the secured content
>(say a form or password entry) safe?
Depends on what's secure and what isn't. For example, if it's just graphics
that are insecure, you're fine. It's the code itself (HTML plus possibly...Setting up secure and non secure webs
Using Apache 1.3 on NW sp4, We need our website so that there is a secure,
password protected area as well. When, setting up the document folders, I
have a volume called web. Do I create a separate root folder for the secure
data, or can the directory be located under the public root folder?
> Do I create a separate root folder for the secure
> data, or can the directory be located under the public root folder?
IIRC it can be either way. You then configure uthentication for that
- Anders Gustafsson, Engineer, CNE6, ASE
NSC Volu...security message("page contains secure and non secure items") coming on https: site
we have developed a site and url of that site begins with https . Now everwhever page loads it gives a security message that " page contains secure and non secure items'. We donot want this message to come on our site.
I read a few articles saying that my image should come from relative path or I should use css classes for images or there should not be any http url in my page. I have implemented these solutions also but still my page is giving this security message.
If any body could tell me how to avoid this message.
A lot of thanks in advance..
...You are about to be redirected to a connection that is not secure.
I have an ecommerce site that has the cart pages in one directory that is secure and other pages that are in non-secure directories. In the cart I have an option for the customer to "Keep Shopping". When I redirect back to the home page I get the following warning:You are about to be redirected to a connection that is not secure.The information you are sending to the current site might be retransmitted to a non-secure site. Do you with to continue?My fear is that the customer will abandon the purchase due to this warning event though I am not redirecting the customer to another sit...Redirecting IF connection is secure
Hello,We have several pages that must be accessed via https. Even if someone got there wihtout the "s" we can catch that with Request.IsSecureConnection and do the redirect. Here's the problem, when the user is on the secure page, al the links are relative, so when clicked, the connection remains secure, even if the page isn't supposed to be. It would not be practical to go to every non-secure page and add a redirect script. Is there a way to add this to the master page? I tried putting it into the Page_Load event, but apparently that creates an endless loop when tryi...