> OK a couple of follow-ups on my own message > > 1. It seems that Mozilla and Netscape do pass the referrer to a javascript > popup, so my comments only apply to IE. > > 2. The second method on my test page works in all browsers (tested NS 4.8, > Mozilla and IE6) whereas the default method doesn't work on IE (at least > not in IE 6).
Great. I am using this and is okay here.... Wheeewwww... > > 3. OpenSRS are attempting to get /srsverify/srsverify.gif from my web > server every time the seal is accessed. I don't understand the point of > this; it would be just as easy for an imposter to put that image > with the correct filename on their site. Fortunately it doesn't seem to > matter that the file doesn't exist - I hope this doesn't change as I have > no intention of using such a URL path. True. Why not have it on their server as long as they are verifying the IP??? Thanks for your tips. I am still concerned that other can use the same HTML and access the confirmation of a valid user. We have other servers and ip's as you know, but I am not much interested in transferring the site and finding out. Can anyone else advice if someone can copy our code and get confirmation? I am simply un-certain of the measures currently at hand in the verification process at 2 cows.... > > www.opensrs.org - - [17/Oct/2002:04:45:13 -0400] "GET > /srsverify/srsverify.gif HTTP/1.0" 404 290 "-" "libwww-perl/5.50" > > David > > > On Wed, 16 Oct 2002, David wrote: > > > > > No browser that I know of will send a referrer to a javascript popup, so I > > have to wonder how this was ever meant to work without the user having to > > type in the domain. > > > > A better solution would be to have the javascript create the popup onclick > > (to get the correct size and window ornaments), and then "fall through" > > and let the href work as normal, with a target of the popup. This way the > > referrer will get passed. > > > > This is demonstrated here > > http://www.sargasso.net/testseal.html > > > > Perhaps the 'cut and paste' supplied by tucows could be altered to match > > the second example. > > > > David > > > > > > On Wed, 16 Oct 2002, [EMAIL PROTECTED] wrote: > > > > > Hello > > > I have question in regards to the Authorized reseller site seal. > > > I installed it today and all seem to go well until I try to use the verify tool included by clicking the seal > > > it goes to the database alright but asked the client to type in the site name with this error message is this something tempoary or will this continue to happen . I don't think I know any one that doesn't have a firewall of some sort if this is going to continue I can't leave it on the site it would annoy most clients > > > error from seal > > > > > > > > > Please enter the URL that you wish to verify: > > > > > > >Box to enter was here< > > > You are being prompted to enter a URL Address > > > as your firewall may prevent our system from automatically > > > determining the URL for you. > > > > > > Greg Makuch > > > Whatever Computes Ltd. > > > http://www.whatevercomputes.com > > > [EMAIL PROTECTED] > > > phone: 306-569-4174 > > > Toll-free: 1-877-291-3269 > > > > > > -- > |> /+\ \| | |> > > David Croft > Infotrek >
