https:// not secure

info17612
9 Posts
info17612 posted this 11 September 2018

https://landschaftsbau-sariyar.de

Hi,
I am building a website for the client above.
I get informations like: connection is not secure (such as images)
The only images I use come from Themler (Have a look on this site)

What shall I do?

Regards Rudolf

https://landschaftsbau-sariyar.de Hi, I am building a website for the client above. I get informations like: connection is not secure (such as images) The only images I use come from Themler (Have a look on this site) What shall I do? Regards Rudolf
Vote to pay developers attention to this features or issue.
7 Comments
Order By: Standard | Newest
DaveOzric
787 Posts
DaveOzric posted this 11 September 2018

That's interesting since I have made static HTML5 websites with Themler and have no issues.

Is the program up to date?

My site's built do not use an absolute URL like your images are which is causing the issue. How are you adding these images?

That's interesting since I have made static HTML5 websites with Themler and have no issues. Is the program up to date? My site's built do not use an absolute URL like your images are which is causing the issue. How are you adding these images?
info17612
9 Posts
info17612 posted this 12 September 2018

The program ist up to date

Every image comes from Themler while editing the website

The program ist up to date Every image comes from Themler while editing the website
DaveOzric
787 Posts
DaveOzric posted this 12 September 2018

If I open Themler on my Desktop and build a HTML5 site and add a photo from their photo collection it's a relative URL so no http so it matches the site.

I do not know why your project does not do this. What is your version of the program? Is it the Desktop version?

If I open Themler on my Desktop and build a HTML5 site and add a photo from their photo collection it's a relative URL so no http so it matches the site. I do not know why your project does not do this. What is your version of the program? Is it the Desktop version?
info17612
9 Posts
info17612 posted this 12 September 2018

Hi,
I solved the the Problem this afternoon (I hope so)

Themler use an Image with http, I replaced it with an Image made by me: It works.

I found some text

Link to sectionTypes of mixed content

There are two categories for mixed content: mixed passive/display content and mixed active content. The difference lies in the threat level of the worst case scenario if content is rewritten as part of a man-in-the-middle attack. In the case of passive content, the threat is lower (the page may contain misleading content, or the user's cookies may be stolen). In the case of active content, the threat can lead to phishing, sensitive data disclosure, redirection to malicious sites, etc.
Link to sectionMixed passive/display content

Mixed passive/display content is content served over HTTP that is included in an HTTPS webpage, but that cannot alter other portions of the webpage. For example, an attacker could replace an image served over HTTP with an inappropriate image or message to the user. The attacker could also infer information about the user's activities by watching which images are served to the user; often images are only served on a specific page within a website. If the attacker observes HTTP requests to certain images, they could determine which webpage the user is visiting.
Passive content list

This section lists all types of HTTP requests which are considered passive content:

<img> (src attribute)
<audio> (src attribute)
<video> (src attribute)
<object> subresources (when an <object> performs HTTP requests)

and so on

Regards

R

Hi, I solved the the Problem this afternoon (I hope so) Themler use an Image with http, I replaced it with an Image made by me: It works. I found some text Link to sectionTypes of mixed content There are two categories for mixed content: mixed passive/display content and mixed active content. The difference lies in the threat level of the worst case scenario if content is rewritten as part of a man-in-the-middle attack. In the case of passive content, the threat is lower (the page may contain misleading content, or the user's cookies may be stolen). In the case of active content, the threat can lead to phishing, sensitive data disclosure, redirection to malicious sites, etc. Link to sectionMixed passive/display content Mixed passive/display content is content served over HTTP that is included in an HTTPS webpage, but that cannot alter other portions of the webpage. For example, an attacker could replace an image served over HTTP with an inappropriate image or message to the user. The attacker could also infer information about the user's activities by watching which images are served to the user; often images are only served on a specific page within a website. If the attacker observes HTTP requests to certain images, they could determine which webpage the user is visiting. Passive content list This section lists all types of HTTP requests which are considered passive content: <img> (src attribute) <audio> (src attribute) <video> (src attribute) <object> subresources (when an <object> performs HTTP requests) and so on Regards R
info17612
9 Posts
info17612 posted this 12 September 2018

Have a look

Gemischte (unsichere) Anzeige-Inhalte von "http://landschaftsbau-sariyar.de/images/editor-content/4fdd0e1230a6cdbd68551f1b08705267_bossfightfreehighqualitystockimagesphotosphotographygrasslawnmower.jpg" werden auf einer sicheren Seite geladen[Weitere Informationen]

I am not able to explain it in English

Have a look Gemischte (unsichere) Anzeige-Inhalte von "http://landschaftsbau-sariyar.de/images/editor-content/4fdd0e1230a6cdbd68551f1b08705267_bossfightfreehighqualitystockimagesphotosphotographygrasslawnmower.jpg" werden auf einer sicheren Seite geladen[Weitere Informationen] I am not able to explain it in English
DaveOzric
787 Posts
DaveOzric posted this 12 September 2018

So is it fixed or not?

So is it fixed or not?
DaveOzric
787 Posts
DaveOzric posted this 12 September 2018

I always save all the images from them and optimize them and re-ad them to the project.

I always save all the images from them and optimize them and re-ad them to the project.
You must log in or register to leave comments