No https...Why??
- Thread starter Jason365
- Start date
- th_trl_thread_readers 0
- Status
What browser are you using? When I connect I get a valid TLS 1.0 cert from the GeoTrust DV SSL CA ... it's possible your browser needs an updated CA list but regular updates of IE, Firefox, or Chrome would do that for you. And that's a long-standing CA so I'd be surprised if you don't have it.
There are other more broken / nefarious options but those are stretching it for this post. -Magnus
There are other more broken / nefarious options but those are stretching it for this post. -Magnus
I am using Chrome 11.0.696.71. and this is what its saying..
The site uses SSL, but Google Chrome has detected either high-risk insecure content on the page or problems with the site’s certificate. Don’t enter sensitive information on this page. Invalid certificate or other serious https issues could indicate that someone is attempting to tamper with your connection to the site.
So I dunno.. I will clear my cache and such to see if it help with the certificate. But it did this from 2 different computers. So I dont think thats it.
The site uses SSL, but Google Chrome has detected either high-risk insecure content on the page or problems with the site’s certificate. Don’t enter sensitive information on this page. Invalid certificate or other serious https issues could indicate that someone is attempting to tamper with your connection to the site.
So I dunno.. I will clear my cache and such to see if it help with the certificate. But it did this from 2 different computers. So I dont think thats it.
Hrmm. In what point of the checkout process does this happen for you? Chrome is updated well and I'm using Chrome right now without this same problem. Can you copy the URL for me? Send it via PM.. Even if it has tokens for your order w/o cookies on my end I won't see the order. Just want to connect to that server, see what TLS cert it sends over, and if what other servers content comes from on whatever page you're on so I can try to see if I can figure it out. Long shot from here because it might just redirect me elsewhere but I can try. -Magnus
what happens if you type in the 's'? What page are you on when you get the warning?
This could be caused by our counter which is not secure but it's also not on the checkout page so make sure the checkout page is in https and see if you still get the error..
hoog
hoog
This could be caused by our counter which is not secure but it's also not on the checkout page so make sure the checkout page is in https and see if you still get the error..
hoog
hoog
if you type in https for the checkout page what happens? Have you tried another browser?
My chrome shows this up top:
Thanks, hoog
My chrome shows this up top:
Thanks, hoog
Last edited:
It shows up as "https" when I use Chrome. Check your settings. Maybe that's the problem.
It could be that only part of the site is encrypted. It could be some image or add insertion that is not encrypted. The certificate is valid up until 2012 by GeoTrust.
Edit: There are a few "add ons" on the page that are transmitted via http instead of https. That is probably why you are getting the warning. That doesn't mean that the page is insecure. It just means that parts of the page are not encrypted. You may have your security settings set really high which is triggering the warning.
Edit: There are a few "add ons" on the page that are transmitted via http instead of https. That is probably why you are getting the warning. That doesn't mean that the page is insecure. It just means that parts of the page are not encrypted. You may have your security settings set really high which is triggering the warning.
Last edited:
IF you use a different browser and the behavior changes, then it's localized to Chrome and perhaps a simple reinstall will fix it. If the other browser has similar HTTPS warnings then the first culprit is your Windows certificate storage (which Chrome doesn't trust by default but can cause problems like this). Is the other browser also shows this problem then we've got both local compromise and unsavory ISP options to consider.
Could go through about a dozen options in ten minutes at the console but this way is tough. Hrmm.
It's probably something simple though, the paranoid options don't fit this sort of thing. You'd see it all over the place.
And, just to elimiate a whole CA storage problem in Chrome... any problems with https://www.google.com ? -Magnus
Could go through about a dozen options in ten minutes at the console but this way is tough. Hrmm.
It's probably something simple though, the paranoid options don't fit this sort of thing. You'd see it all over the place.
And, just to elimiate a whole CA storage problem in Chrome... any problems with https://www.google.com ? -Magnus
He says ~all~ pages though. And I went through the whole process and not all the pages had mixed content.
If he selects the lock icon and pastes the certificate material at least we could very it matches. Even a forged one will fail the chain check. -Magnus
- Status
Similar threads
