Comments
Read the article that everyone's commenting on.
Subscribe to the RSS Feed for comments on this article.
Thanks, Marcio. Not having a src was my problem. I added "blank.html" (nothing in the file except beginning and ending html tags) to the same folder as the file (so that it is within the secure site) and assigned the src attribute to it. Problem resolved!
Thanks also to Leo for the good site and solution.
Bob
Posted by: bob at February 14, 2006 1:24 PMFrankly, this is a stupid warning. It scares users for no reason. There is nothing wrong with having secure and unsecure content on your page. The problem is when your url in the address bar is secure but the form your submitting is unsecure. That's when the warning should be displayed.
There is a very seldom chance that you need to secure images on you page. I.e. Why would you ever need to secure your logo? It doesn't make sense. There is no need to encrypt images, stylesheets, javascript.
Using ssl only encrypts your content as it's passing through the network. The reason why you would encrypt your content is because you don't want people to see it if they're sniffing. Yes, they won't see the content with their packet sniffer, however, that is not good enough. They can just take the url and paste it in the browser. In order for your content to be truely secure you need to develop some authentication system around it. So that if someone tries to access your content such as an image it will prompt them for authentication. Putting authentication on every image on your page is "stupid" unless every image has critical information.
This Internet Explorer feature vexes me.
Posted by: Billy at February 23, 2006 8:32 AMMarcio,
I am facing similar problem, I have checked the IFRAME tag and its pointing to the correct SRC path. can you pls tell me what else or which other part of HTML is causing this error?
how can i get rid of those errors? And most important - I dont want to change any settings of my IE.
Thanks,
Nakul
Just add src="javascript:'';"
Posted by: Slonick at April 6, 2006 5:52 AMHi Everyone !
Same problem... I use Javascript to change the Iframe URL :
Iframe.src = url; The url I get is for example : "index.php5?this=that". This is relative. Is it secure or not ? Can the problem come from this?
Please...
THX !
Caro
Posted by: caro at April 18, 2006 1:37 AMoh, made mistake...
I use XSL to Transform XML into HTML. In my xsl stylesheet, I have : ""
I can't take off this line, so I'm not sure this is the reason... oh oh i'm lost...
Sorry : between the "" :
xsl:stylesheet version="1.0" xmlns:xsl="http://www.w3.org/1999/XSL/Transform"
"Tools" > "Internet Options". Select the "Content" tab. Click the "Disable" button under "Content Advisor".
Posted by: Davido at May 18, 2006 8:11 AMEasiest way is the following:
1. In your web browser go to Tools.
2. Select Internet Options from the drop down menu.
3. Click on the Security tab.
4. Click on the Web content zone you use to access the Site.
5. Click Custom level.
6. Scroll down to find the heading Miscellaneous.
7. Find the sub-heading Display Mixed Content.
8. Click Enable.
9. Click OK.
10. In response to ‘Are you sure you want to change the security settings for this zone?’ click Yes.
11. Click OK to close the Internet Options box.
Not sure if it's relevant. But my site was giving this error, until i'd made my 'include' folder run under SSL, as well as my main folder.
So, check the code insecure links, and then double check all folders in the website are using ssl.
Subscribe to the RSS Feed for comments on this article.
To post a comment on "Can I get rid of the "This page contains both secure and nonsecure items" warning?", please return to that article's main page.