• Fixing the ‘Do you want to display nonsecure items’ message

    see also Fixing the ‘Do you want to display nonsecure items’ message

    Have you ever been to a web site and seen this?

    Non secure items warning in IE

    This warning is triggered in IE if it is displaying a secure HTTPS page that has caused a non-secure (i.e. HTTP based) resource to be downloaded. The message box doesn’t allow the user to control whether the non-secure content should be downloaded, only whether it should be displayed. 

    This seems rather pointless as the damage may already have been done if the non-secure content was a picture of your passport, bank statement or credit card! However, this is the default setting in IE so it is best to avoid this warning being generated on your web site.

    This setting can be changed in IE by:

    1. In IE go to Tools->Internet Options->Security
    2. Select the ‘Security’ tab
    3. Click the ‘Custom Level’ button
    4. In the ’Miscellaneous’ section change “Display mixed content” to Enable

    Recently, we saw this warning in the shopping cart of an  computer store,  so we fired up HttpWatch to see what was causing the problem. A quick search for a URL starting with ‘http:’ should have located the request causing the problem:

    HttpWatch trace for nonsecure items message at Ebuyer

    No HTTP requests were recorded for this page in HttpWatch. So what was causing the ‘Do you want to display nonsecure items’ message?

    It turns out that IE warns about HTTP based content even if it was read from the browser cache or the IE image cache. Requests from the browser cache are shown as (Cache) in HttpWatch, but as we previously described access to the IE image cache is not recorded.

    The resource causing the warning on this page must have been read from the image cache. We confirmed this by refreshing the page in IE and performing another search:

    Image causing nonsecure items warning

    The refresh forced IE to download all the embedded resources on the page and it became clear that it was the Google Checkout image that was causing the problem. Changing this image’s URL to use HTTPS would prevent the warning from appearing.

    A comment from user:

    Hi

    I found that the problem was setting relative paths for CSS images from javascript - see http://www.weeklywhinge.com/?p=82 for info

    Cheers!
  • 相关阅读:
    什么是代理
    简易的屏幕适配
    SourceTree 操作简介
    project/target/product的简易区别
    iOS申请真机调试证书-图文详解
    关于UINavigationController的backBarButtonItem定制问题
    pat1008
    pat1005
    pat1019-简单模拟题
    ie6-ie8中不支持opacity透明度的解决方法
  • 原文地址:https://www.cnblogs.com/jjkv3/p/1588158.html
Copyright © 2020-2023  润新知