Hi,

Why do you think this is a security problem?

Because it's (maybe) about some SSL-configuration. My actual question is about the displayed <TD>-background images ! Shouldn't they be displayed either ? Is this a possible sec-hole ? thanks tobi

...

if i reference images from other servers than mine (with mod_ssl) via http (wich has to be done 'cause the paths are being rewritten by a script...) the images are not loaded and are substituted by a broken key in Netscape. So i read in the archives and is says that i have to reference all embedded content (like images) via https too.

But the strange thing is, that all background images (referenced via http too!) are displayed !!

Is there a chance to get the other images to work too or is it impossible ?

Thanks for your help !

Tobi

PS: This should just be a temporary solution till the scripts are rewritten... -o) Hubert Mantel Goodbye, dots... /\\ _\_v

--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com

-- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ AiCOMM agentur fuer information und communication AiCOMM Brecherspitzstrasse 8 Tel: 089 - 6979 83 0 81541 Muenchen Fax: 089 - 6979 8320 mailto:gasser@aicomm.de http://www.aicomm.de ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ------------------------------------------------------- -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ AiCOMM agentur fuer information und communication AiCOMM Brecherspitzstrasse 8 Tel: 089 - 6979 83 0 81541 Muenchen Fax: 089 - 6979 8320 mailto:gasser@aicomm.de http://www.aicomm.de ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~