Re: security alert & SSL

From: David Wang [Msft] (someone_at_online.microsoft.com)
Date: 08/07/04

Next message: Anthony: "IIs Security across all .asps"

Previous message: David Wang [Msft]: "Re: CGI can't spawn process under IIS6"
In reply to: John: "security alert & SSL"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sat, 7 Aug 2004 00:48:35 -0700

This question has nothing to do with IIS, which is a web server.

Your webpage editor is writing the wrong HTML which results in this problem.
Please contact IBM for support.

-- 
//David
IIS
This posting is provided "AS IS" with no warranties, and confers no rights.
//
"John" <umacus2002@yahoo.com> wrote in message
news:b0bd222b.0408032314.7e056241@posting.google.com...
***
We have a problem with a form, using javascript and SSL.
When we submit 'Potpisi' button, security alert occurs.
It says that we have secure and non-secure items.
How to avoid this problem?
thank you kindly,
IR
***
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html lang="hr">
<HEAD>
<META http-equiv="Content-Type" content="text/html; charset=Cp1250">
<META name="GENERATOR" content="IBM WebSphere Studio">
<META http-equiv="Content-Style-Type" content="text/css">
<LINK href="/pprom/theme/Master.css" rel="style***" type="text/css">
<TITLE>Kunski platni promet - Poslovni subjekti</TITLE>
<LINK rel="style***" href="/pprom/theme/ppp.css" type="text/css">
<STYLE type="text/css">
<!--
#ABC  {font-family:arial;font-size:12;font-weight:500;
color: #0066cc}
#ABC  P {margin:0;white-space:nowrap;
color: #0066cc}
#ABC  P:first-letter {font-weight:900;font-size:16;
color: #0066cc}
-->
</STYLE>
</HEAD>
<BODY>
<TABLE border="0" width="100%" cellspacing="0" cellpadding="0"
height="100%">
<TBODY>
<TR>
<TD colspan="2" height="88"><table id=ABC  width="100%"
cellspacing="0" cellpadding="0" background="/pprom/i/bg-main.gif"
height="88" border="0">
<tr><td valign="middle" align="center" width="70"><img
src="/pprom/i/ABC 2.gif" width=40 height=50 alt="testna01 Kreditna
Banka test d.d."><td
width="159"><p>testna01</p><p>KREDITNA</p><p>BANKA test</p>
</td>
<TD align="right" valign="bottom"><IMG border="0"
src="/pprom/i/keys.gif"
width="286" height="51"></TD>
<td align="right" valign="bottom"><a href="/pprom/odjava.do"><font
color="#0066cc">Odjava</font></a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<br>
<img border="0"
src="/pprom/i/ABC _net_logo.gif" width="134" height="39"></td>
</tr>
<TR>
<TD height="22" colspan="4"><table width="100%">
<tbody>
<tr>
<td>
<logic:notEmpty name="komitent" property="tvrtka">
<font size="2">ivanisevi&#263; ANTON BLOKETARA sisak </font>
</logic:notEmpty>
</td>
<td align="right"><font size="2">Korisnik:
<logic:notEmpty name="korisnik" property="username">
<font size="2">kor020 </font>
</logic:notEmpty>
</font></td>
</tr>
</tbody>
</table>
</TD>
</TR></table>
</TD>
</TR>
<TR>
<TD valign="top" bgcolor="#0066cc" width="20%">
<table width="100%">
<tbody>
<tr>
<td width="10"></td>
<td>
<table border="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td>03.08.2004</td>
</tr>
<tr>
<td>Računi</td>
</tr>
<tr>
<td>Izvodi</td>
</tr>
<tr>
<td>Prometi</td>
</tr>
<tr>
<td>Nalozi</td>
</tr>
<tr>
<td>Upload datoteka</td>
</tr>
<tr>
<td>Korisnici</td>
</tr>
<tr>
<td>Postavke</td>
</tr>
<tr>
<td>Promjena lozinke</td>
</tr>
<tr>
<td>Kontakt</td>
</tr>
<tr>
<td>Izbor komitenta</td>
</tr>
<tr>
<td>Odjava</td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
</TD>
<TD valign="top">
<table width="100%" height="100%">
<tbody>
<tr>
<td height="35"><br>
<H1>
Nalozi
</H1>
</td>
</tr>
<tr>
<td align="center" valign="top">
<script>
function selectAll(theChk) {
   f=theChk.form;
  chk=theChk.checked;
   for(i=0;i<f.elements.length;i++) {
    if (f.elements[i].type=='checkbox' &&
f.elements[i].name.indexOf(theChk.value)==0) {
      // if the checkbox name starts with the value of the checkall
checkbox
       f.elements[i].checked=chk
    }
  }
}
function signAll(theBut, brRedova) {
   f=theBut;
   for (i= 0; i < brRedova; i++){
   f.fieldsforsign.value = "svota[" + i + "]"
   if (parent.frameApplet.WST_submit_form(f)){
   for(j=0;j<f.elements.length;j++) {
    if (f.elements[j].type=='hidden' && f.elements[j].name ==
"certificatex[" + i + "]" ) {
    f.elements[j].value = f.certificate.value
    // alert(f.elements[j].value)
    }
    if (f.elements[j].type=='hidden' && f.elements[j].name ==
"digital_signaturex[" + i + "]" ) {
    f.elements[j].value = f.digital_signature.value
    // alert(f.elements[j].value)
    }
}
   }
   }
}
</script>
<form method="post" name="form" action="potpisivanje.do"
onsubmit="signAll(this, 15)">
<table cellspacing="0" cellpadding="0" border="0"
align="CENTER" class="FORM"><tr><td valign="top"><table
cellspacing="1" cellpadding="1" border="0" width="100%">
<tr><th class="FORM">Broj naloga</th><th class="FORM">Datum
valute</th><th class="FORM">Primatelj</th><th class="FORM">Broj
ra?una</th><th class="FORM">Opis prometa</th><th
class="FORM">Iznos</th><th class="FORM">Status</th><th
class="FORM">Detalji</th></tr><tr>
<td class="FORM2"><input type="checkbox"
name="brojNaloga[0]" value="106">
106
<input type="hidden" name="certificatex[0]" >
<input type="hidden" name="digital_signaturex[0]" >
<input type="hidden" name="svota[0]" value="3580.23">
</td>
<td class="FORM2">27.07.2004</td>
<td class="FORM2">ABC  test D.D. ivanisevi&#263; IVAN</td>
<td class="FORM2">2380006-1000000005</td>
<td class="FORM2">tstNET - ISPLATA PLA&#262;A ZA LIPANJ
200</td>
<td class="FORM2" style="text-align: right;">3.580,23</td>
<td class="FORM2">UNESE</td>
<td class="FORM2">
<a href="detaljiNaloga.do?idNaloga=106"><img
src="/pprom/config/hideshow_infohidden.gif" border="0"/></a>
</td>
</tr><tr>
<td class="FORM"><input type="checkbox" name="brojNaloga[1]"
value="105">
105
<input type="hidden" name="certificatex[1]" >
<input type="hidden" name="digital_signaturex[1]" >
<input type="hidden" name="svota[1]" value="350.00">
</td>
<td class="FORM">27.07.2004</td>
<td class="FORM">&quot;OSKAR&quot; test</td>
<td class="FORM">2380006-1140001569</td>
<td class="FORM">tstNET - PLA&#262;ANJE RA&#268;UNA ZA
ISPORU&#268;E</td>
<td class="FORM" style="text-align: right;">350,00</td>
<td class="FORM">DJELP</td>
<td class="FORM">
<a href="detaljiNaloga.do?idNaloga=105"><img
src="/pprom/config/hideshow_infohidden.gif" border="0"/></a>
</td>
</tr><tr>
<td class="FORM2"><input type="checkbox"
name="brojNaloga[2]" value="104">
104
<input type="hidden" name="certificatex[2]" >
<input type="hidden" name="digital_signaturex[2]" >
<input type="hidden" name="svota[2]" value="125.20">
</td>
<td class="FORM2">27.07.2004</td>
<td class="FORM2">HT TKC PAZIN</td>
<td class="FORM2">2390001-1500001578</td>
<td class="FORM2">tstNET - PLA&#262;ANJE RA&#268;UNA ZA
TELEFONS</td>
<td class="FORM2" style="text-align: right;">125,20</td>
<td class="FORM2">DJELP</td>
<td class="FORM2">
<a href="detaljiNaloga.do?idNaloga=104"><img
src="/pprom/config/hideshow_infohidden.gif" border="0"/></a>
</td>
</tr><tr>
<td class="FORM"><input type="checkbox" name="brojNaloga[3]"
value="103">
103
<input type="hidden" name="certificatex[3]" >
<input type="hidden" name="digital_signaturex[3]" >
<input type="hidden" name="svota[3]" value="3580.23">
</td>
<td class="FORM">26.07.2004</td>
<td class="FORM">ABC  test D.D. ivanisevi&#263; IVAN</td>
<td class="FORM">2380006-1000000005</td>
<td class="FORM">tstNET - ISPLATA PLA&#262;A ZA LIPANJ
200</td>
<td class="FORM" style="text-align: right;">3.580,23</td>
<td class="FORM">DJELP</td>
<td class="FORM">
<a href="detaljiNaloga.do?idNaloga=103"><img
src="/pprom/config/hideshow_infohidden.gif" border="0"/></a>
</td>
</tr><tr>
<td class="FORM2"><input type="checkbox"
name="brojNaloga[4]" value="102">
102
<input type="hidden" name="certificatex[4]" >
<input type="hidden" name="digital_signaturex[4]" >
<input type="hidden" name="svota[4]" value="350.00">
</td>
<td class="FORM2">26.07.2004</td>
<td class="FORM2">&quot;OSKAR&quot; test</td>
<td class="FORM2">2380006-1140001569</td>
<td class="FORM2">tstNET - PLA&#262;ANJE RA&#268;UNA ZA
ISPORU&#268;E</td>
<td class="FORM2" style="text-align: right;">350,00</td>
<td class="FORM2">UNESE</td>
<td class="FORM2">
<a href="detaljiNaloga.do?idNaloga=102"><img
src="/pprom/config/hideshow_infohidden.gif" border="0"/></a>
</td>
</tr><tr>
<td class="FORM"><input type="checkbox" name="brojNaloga[5]"
value="101">
101
<input type="hidden" name="certificatex[5]" >
<input type="hidden" name="digital_signaturex[5]" >
<input type="hidden" name="svota[5]" value="125.20">
</td>
<td class="FORM">26.07.2004</td>
<td class="FORM">HT TKC PAZIN</td>
<td class="FORM">2390001-1500001578</td>
<td class="FORM">tstNET - PLA&#262;ANJE RA&#268;UNA ZA
TELEFONS</td>
<td class="FORM" style="text-align: right;">125,20</td>
<td class="FORM">UNESE</td>
<td class="FORM">
<a href="detaljiNaloga.do?idNaloga=101"><img
src="/pprom/config/hideshow_infohidden.gif" border="0"/></a>
</td>
</tr><tr>
<td class="FORM2"><input type="checkbox"
name="brojNaloga[6]" value="91">
91
<input type="hidden" name="certificatex[6]" >
<input type="hidden" name="digital_signaturex[6]" >
<input type="hidden" name="svota[6]" value="358023.00">
</td>
<td class="FORM2">26.07.2004</td>
<td class="FORM2">ABC  test D.D. ivanisevi&#263; IVAN</td>
<td class="FORM2">2380006-1000000005</td>
<td class="FORM2">tstNET - ISPLATA PLA&#262;A ZA LIPANJ
200</td>
<td class="FORM2" style="text-align: right;">358.023,00</td>
<td class="FORM2">UNESE</td>
<td class="FORM2">
<a href="detaljiNaloga.do?idNaloga=91"><img
src="/pprom/config/hideshow_infohidden.gif" border="0"/></a>
</td>
</tr><tr>
<td class="FORM"><input type="checkbox" name="brojNaloga[7]"
value="90">
90
<input type="hidden" name="certificatex[7]" >
<input type="hidden" name="digital_signaturex[7]" >
<input type="hidden" name="svota[7]" value="35000.00">
</td>
<td class="FORM">26.07.2004</td>
<td class="FORM">&quot;OSKAR&quot; test</td>
<td class="FORM">2380006-1140001569</td>
<td class="FORM">tstNET - PLA&#262;ANJE RA&#268;UNA ZA
ISPORU&#268;E</td>
<td class="FORM" style="text-align: right;">35.000,00</td>
<td class="FORM">UNESE</td>
<td class="FORM">
<a href="detaljiNaloga.do?idNaloga=90"><img
src="/pprom/config/hideshow_infohidden.gif" border="0"/></a>
</td>
</tr><tr>
<td class="FORM2"><input type="checkbox"
name="brojNaloga[8]" value="89">
89
<input type="hidden" name="certificatex[8]" >
<input type="hidden" name="digital_signaturex[8]" >
<input type="hidden" name="svota[8]" value="12520.00">
</td>
<td class="FORM2">26.07.2004</td>
<td class="FORM2">HT TKC PAZIN</td>
<td class="FORM2">2390001-1500001578</td>
<td class="FORM2">tstNET - PLA&#262;ANJE RA&#268;UNA ZA
TELEFONS</td>
<td class="FORM2" style="text-align: right;">12.520,00</td>
<td class="FORM2">UNESE</td>
<td class="FORM2">
<a href="detaljiNaloga.do?idNaloga=89"><img
src="/pprom/config/hideshow_infohidden.gif" border="0"/></a>
</td>
</tr><tr>
<td class="FORM"><input type="checkbox" name="brojNaloga[9]"
value="88">
88
<input type="hidden" name="certificatex[9]" >
<input type="hidden" name="digital_signaturex[9]" >
<input type="hidden" name="svota[9]" value="358023.00">
</td>
<td class="FORM">26.07.2004</td>
<td class="FORM">ABC  test D.D. ivanisevi&#263; IVAN</td>
<td class="FORM">2380006-1000000005</td>
<td class="FORM">tstNET - ISPLATA PLA&#262;A ZA LIPANJ
200</td>
<td class="FORM" style="text-align: right;">358.023,00</td>
<td class="FORM">UNESE</td>
<td class="FORM">
<a href="detaljiNaloga.do?idNaloga=88"><img
src="/pprom/config/hideshow_infohidden.gif" border="0"/></a>
</td>
</tr><tr>
<td class="FORM2"><input type="checkbox"
name="brojNaloga[10]" value="87">
87
<input type="hidden" name="certificatex[10]" >
<input type="hidden" name="digital_signaturex[10]" >
<input type="hidden" name="svota[10]" value="35000.00">
</td>
<td class="FORM2">26.07.2004</td>
<td class="FORM2">&quot;OSKAR&quot; test</td>
<td class="FORM2">2380006-1140001569</td>
<td class="FORM2">tstNET - PLA&#262;ANJE RA&#268;UNA ZA
ISPORU&#268;E</td>
<td class="FORM2" style="text-align: right;">35.000,00</td>
<td class="FORM2">UNESE</td>
<td class="FORM2">
<a href="detaljiNaloga.do?idNaloga=87"><img
src="/pprom/config/hideshow_infohidden.gif" border="0"/></a>
</td>
</tr><tr>
<td class="FORM"><input type="checkbox"
name="brojNaloga[11]" value="86">
86
<input type="hidden" name="certificatex[11]" >
<input type="hidden" name="digital_signaturex[11]" >
<input type="hidden" name="svota[11]" value="12520.00">
</td>
<td class="FORM">26.07.2004</td>
<td class="FORM">HT TKC PAZIN</td>
<td class="FORM">2390001-1500001578</td>
<td class="FORM">tstNET - PLA&#262;ANJE RA&#268;UNA ZA
TELEFONS</td>
<td class="FORM" style="text-align: right;">12.520,00</td>
<td class="FORM">UNESE</td>
<td class="FORM">
<a href="detaljiNaloga.do?idNaloga=86"><img
src="/pprom/config/hideshow_infohidden.gif" border="0"/></a>
</td>
</tr></table></td></tr></table>
<input type="checkbox" onClick="selectAll(this)"
value="brojNaloga">Ozna?i sve
<input type="hidden" name="fieldsforsign">
<input type="hidden" name="digital_signature">
<input type="hidden" name="certificate">
<input type="submit" name="submit" value="Potpi?i">&nbsp;
<input type="submit" name="submit" value="Obradi"
onclick="form.action='obrada.do'">&nbsp;
<input type="submit" name="submit" value="Bri?i"
onclick="form.action='brisanje.do'">&nbsp;
<input type="reset" value="Ponisti">
</form>
</td>
</tr>
</tbody>
</table>
</TD>
</TR>
<TR>
<TD colspan="2" height="45"><TABLE border="0" cellspacing="0"
cellpadding="0" width="100%" background="/pprom/i/dno.gif"
height="45">
<TBODY>
<TR>
<TD align="center">
<FONT face="Verdana, Arial, Helvetica, sans-serif" size="1"
color="#0066cc">&copy;testna01 Kreditna Banka test d.d. 2004.</FONT>
</TD>
</TR>
</TBODY>
</TABLE>
</TD>
</TR>
</TBODY>
</TABLE>
</BODY>
</html>

Next message: Anthony: "IIs Security across all .asps"

Previous message: David Wang [Msft]: "Re: CGI can't spawn process under IIS6"
In reply to: John: "security alert & SSL"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]