Re: SSL

Wed, 27 Sep 2000 10:30:14 -0700 

I know it is possible for a web server to serve secure and insecure content
on
the same page. For example, the online site for my financial institution
causes
IE 5.5 to warn me that the site contains SSL and unsecure content. Some
secure
sites opt to do this mixed security model because they don't want the
overhead
of sending an image via HTTPS.

So in short, I think you can do it. Your users may get weird security
warnings
from the browser due to the mixed content.

If performance is an issue you might want to look into some of the
hardware-based
SSL accelerators on the market. Supposedly they are faster than
software-based
SSL.

Good luck

Dave Bolt
ATSC/SPAWAR ASAT Team
Bolt's Law of Bandwidth - There is always plenty of network bandwidth, just
none for you.


-----Original Message-----
From: Silvey, Andrew [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, September 27, 2000 1:12 PM
To: [EMAIL PROTECTED]
Subject: SSL


Hi,

this question may be considered off topic, so please do not read this
if you take offence at postings which are not 100% java related.

Does anybody know if it is possible to have a session in a browser
with one frame connected to one unsecure URL and another frame
connected to a secure SSL URL.

Another way to describe this, is it possible to have a browser
open with a page displayed. The page is broken into two frames. The
first frame contains content which is derived from a URL which is
http. The second frame contains content which is derived from a URL
which is https.

I suppose another question is, is it possible to have two frames
connected to different URLS from the same browser session ?

Thanks for your time.

Andy Silvey.

===========================================================================
To unsubscribe: mailto [EMAIL PROTECTED] with body: "signoff
JSP-INTEREST".
Some relevant FAQs on JSP/Servlets can be found at:

 http://java.sun.com/products/jsp/faq.html
 http://www.esperanto.org.nz/jsp/jspfaq.html
 http://www.jguru.com/jguru/faq/faqpage.jsp?name=JSP
 http://www.jguru.com/jguru/faq/faqpage.jsp?name=Servlets

===========================================================================
To unsubscribe: mailto [EMAIL PROTECTED] with body: "signoff JSP-INTEREST".
Some relevant FAQs on JSP/Servlets can be found at:

 http://java.sun.com/products/jsp/faq.html
 http://www.esperanto.org.nz/jsp/jspfaq.html
 http://www.jguru.com/jguru/faq/faqpage.jsp?name=JSP
 http://www.jguru.com/jguru/faq/faqpage.jsp?name=Servlets

Reply via email to