Jump to content


Photo
- - - - -

Ordering Page Is Insecure!


  • Please log in to reply
8 replies to this topic

#1 Rogue Species

Rogue Species

    IPB Member

  • Visitors
  • PipPip
  • 69 posts

Posted 11 January 2012 - 07:33 PM

I am using the latest Google Chrome and was going to purchase IP.Board today however the ordering process is insecure. You have SSL however this is the following message Google Chrome is giving me:

Your connection to www.invisionpower.com is encrypted with 256-bit encryption. However this page includes other resources which are not secure. These resources can be viewed by others while in transit, and can be modified by an attacker to change the behavior of the page.


The HTTPS in the address bar of chrome is red with a red line through it. This is at Step #1 of #3 of the order process. I don't trust it. Please look into it and get back to me. =)

Attached Files



#2 Connor T

Connor T

    Needs Serious Help

  • Members
  • PipPipPipPipPipPip
  • 1,527 posts

Posted 11 January 2012 - 07:55 PM

So they forgot to deliver some images over HTTPS?

I think thats just stupid HTTPS. Though, thats my opinion.
Posted Image
Previously: iBotPeaches // .peaches

#3 Lord Nowe

Lord Nowe

    Advanced Member

  • +Clients
  • 461 posts

Posted 11 January 2012 - 11:50 PM

The page itself is secure, however IPS loads things on that page that are considered insecure elements. None of them relate to the order form, and I have never had a problem. If you click the little "Lock" button next to the red HTTPS: it explains it.

nowesig2.png


#4 Rogue Species

Rogue Species

    IPB Member

  • Visitors
  • PipPip
  • 69 posts

Posted 12 January 2012 - 02:32 AM

The site uses SSL, but Google Chrome has detected either high-risk insecure content on the page or problems with the site’s certificate. Don’t enter sensitive information on this page. Invalid certificate or other serious https issues could indicate that someone is attempting to tamper with your connection to the site.


You guys are probably right but I don't take chances. I don't exactly have the best of luck to begin with. Lol. :no:

#5 Bob van Leeuwen

Bob van Leeuwen

    Advanced Member

  • Members
  • PipPipPipPip
  • 475 posts

Posted 12 January 2012 - 03:02 AM

You are worried about the logo that they load from a "normal" adres?

#6 Rogue Species

Rogue Species

    IPB Member

  • Visitors
  • PipPip
  • 69 posts

Posted 12 January 2012 - 04:15 AM

You are worried about the logo that they load from a "normal" adres?


I don't know whats causing it. I'm not sure how SSL really works to be honest. I've always been told/taught that as general rule you never input personal information for billing and whatnot unless the connection is secure. Green means good. Red means bad. Nothing means worse. That's about my current level of understanding when it comes to SSL. :sweat:

I'm just now really starting to learn web programming with the assistance of books. I'm sure I'll learn all about SSL in due time. :grin:

#7 Rhett

Rhett

    R1Lover

  • IPS Staff
  • 4,223 posts

Posted 12 January 2012 - 04:18 AM

We are looking into this issue, it is secure, however it's pulling some images from our servers without https, there is no security issue at all, however it will throw an error due to the images as mentioned.

This should be resolved shortly :)

"If you're spinning your wheels or sliding backwards... you better look for some traction, before you fall off the road!"

 

 

Rhett
Hosting & Support Manager
Invision Power Services Inc


#8 Rogue Species

Rogue Species

    IPB Member

  • Visitors
  • PipPip
  • 69 posts

Posted 12 January 2012 - 04:23 AM

We are looking into this issue, it is secure, however it's pulling some images from our servers without https, there is no security issue at all, however it will throw an error due to the images as mentioned.

This should be resolved shortly :smile:


Cool. Glad to know its nothing serious. :hyper:

#9 Mark

Mark

    I dropped the "iggy"

  • IPS Staff
  • 8,381 posts

Posted 12 January 2012 - 07:00 AM

It should be okay now.

Mark Wade
Developer

zce-php5-3-logo.gif php5-zce-logo-new.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users