This is a staging forum for AgileBits, not an official support forum. Visit http://discussions.agilebits.com instead.
HTTPS Blog link in top menu bar and a SSL problem (self-signed cert)
Something for the web team, perhaps (unless it's just me <img src='http://forum.agilebits.com/public/style_emoticons/<#EMO_DIR#>/wink.png' class='bbc_emoticon' alt=';)' /> ):
If I am any of the HTTPS pages, such as: https://agilebits.com/ and hover over the top gray menu bar's "Blog" item, the link it tries to go to is: https://agilebits.com/blog That flips to: https://blog.agilebits.com/ which Firefox flags as an "Untrusted Connection" due to the cert being self-signed.
The other links on the gray menu are all to HTTPS versions of the other sections of AgileBits, and come up without Firefox noting any SSL oddities. It's just the Blog one that's got Firefox (or IE, etc.) concerned.
Alternatively, if one uses the non-SSL links for the other pages and just goes HTTP, the corresponding gray menu's links are all non-SSL too and the resulting HTTP Blog link goes through just fine. Ex: http://blog.agilebits.com/
If I am any of the HTTPS pages, such as: https://agilebits.com/ and hover over the top gray menu bar's "Blog" item, the link it tries to go to is: https://agilebits.com/blog That flips to: https://blog.agilebits.com/ which Firefox flags as an "Untrusted Connection" due to the cert being self-signed.
The other links on the gray menu are all to HTTPS versions of the other sections of AgileBits, and come up without Firefox noting any SSL oddities. It's just the Blog one that's got Firefox (or IE, etc.) concerned.
Alternatively, if one uses the non-SSL links for the other pages and just goes HTTP, the corresponding gray menu's links are all non-SSL too and the resulting HTTP Blog link goes through just fine. Ex: http://blog.agilebits.com/
Flag
0
Comments
-
Thanks for mentioning this, sagashi! We should have that fixed soon. We recently switched our [i]entire[/i] site over to SSL, but the blog is hosted on a separate server. We will update the link in the header to reflect this. <img src='http://forum.agilebits.com/public/style_emoticons/<#EMO_DIR#>/skype_smile.png' class='bbc_emoticon' alt=':-)' />
Cheers,Flag 0 -
Nifty -- also good to hear AgileBits is going the entire SSL route. I know the technology itself is only as secure as the CAs our browser's trust, and the implementation of full SSL on a site may scrap some caching efficiencies along the way at ISPs and the like -- but the added protection / assurance is certainly appreciated.
Thanks!Flag 0 -
It should be all set now. I'm glad we got this resolved especially in light of [url="http://blog.agilebits.com/2011/09/who-do-you-trust-to-tell-you-who-to-trust/"]all the DigiNotar hubbub[/url]. Thanks for pointing it out. <img src='http://forum.agilebits.com/public/style_emoticons/<#EMO_DIR#>/skype_smile.png' class='bbc_emoticon' alt=':-)' />Flag 0