Mailinglist Archive: opensuse-security (601 mails)

< Previous Next >
Re: [suse-security] Re: SSL with embedded http-image-references
Hi,

> Why do you think this is a security problem?

Because it's (maybe) about some SSL-configuration.

My actual question is about the displayed <TD>-background images !
Shouldn't they be displayed either ?
Is this a possible sec-hole ?

thanks
tobi

>
> > if i reference images from other servers than mine (with mod_ssl)
> > via http (wich has to be done 'cause the paths are being rewritten by
> > a script...) the images are not loaded and are substituted by a
> > broken key in Netscape.
> > So i read in the archives and is says that i have to reference
> > all embedded content (like images) via https too.
> >
> > But the strange thing is, that all background images (referenced
> > via http too!) are displayed !!
> >
> > Is there a chance to get the other images to work too or is it
> > impossible ?
> >
> > Thanks for your help !
> >
> > Tobi
> >
> > PS: This should just be a temporary solution till the scripts are
> > rewritten...
> -o)
> Hubert Mantel Goodbye, dots... /\\
> _\_v
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: suse-security-unsubscribe@xxxxxxxx
> For additional commands, e-mail: suse-security-help@xxxxxxxx
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
AiCOMM
agentur fuer information und communication

AiCOMM
Brecherspitzstrasse 8 Tel: 089 - 6979 83 0
81541 Muenchen Fax: 089 - 6979 8320
mailto:gasser@xxxxxxxxx http://www.aicomm.de
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-------------------------------------------------------

--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
AiCOMM
agentur fuer information und communication

AiCOMM
Brecherspitzstrasse 8 Tel: 089 - 6979 83 0
81541 Muenchen Fax: 089 - 6979 8320
mailto:gasser@xxxxxxxxx http://www.aicomm.de
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

< Previous Next >
This Thread
  • No further messages