Further to a previous post but yet different, I am still in trouble trying to show the Comodo Verification symbols when viewing my web pages. It shows up perfectly in the Admin section but not for the consumer end.
I was told (not sure if fact or fiction) that every ‘HTTP’ reference on the web page I wish to show the Comodo Verification symbols (lock sign) on must be shown as ‘HTTPS’. If there are any plain HTTP references, then the symbol will not show.
Question:
Can anyone tell me if this is likely to be true and
When you ‘View Page Source’ and all the code appears, if I wish to comment out any reference to simple ‘HTTP’ to prove the above theory, how do I do it? I mean where in OXID’s bowls do I find all the code that is visibile on the main page? I have lost my IT person (Examinations)… and I am trying to be self sufficient
the Comodo symbol shall be just a seal, a warranty for the security of your shop. An online shop and any other application doesn’t have to be 100% under SSL (HTTPS) because it takes valuable performance. So it makes only sense when data are inserted in forms and shall be send over the internet to prevent man-in-the-middle-attacks. I reckon the Comodo guys will know that and wondering if it is really true what you say
If you want to approve it anyway, simply change the shop URL value to https in config.inc.php.
I guess it’s meant that if a https url is called, all [B]references[/B] on that page should be https, so every javascript, stylesheet, image etc. have to be loaded via https.
If any resource is loaded via http although the site is https, it won’t be 100% secure.
Of course not every single page has to be https. Where https makes sense is explained by Marco.
I am not sure if I explained my dilemma correctly, so I apologise.
The Comodo ‘LOCK’ symbol is visibile on the OXID Admin section as shown in the attached image - it presents correctly. This means to me that the Comodo code/script was successfully installed.
However when customers browse to my webpage to visit the shop, no symbol is visible. (see 2nd picture). I am at a loss how I get the lock symbol to show up on the main URL. Something must be blocking it, BUT WHAT?
In AU these symbols are extremely important as the only recognised method of offering consumers confidence that there transaction details are kept confidential (encrypted). We do not have ‘Trusted Sites’ or similar programs as are available in the EU.
Hopefully this additional information will enable “The Brains Trust” to assist me with this tough nut.
