Security issues with custom domain name
scwalter
Registered Users Posts: 417 Major grins
I hardly ever use IE anymore, but I went to my site today using my custom domain and discovered a bunch of things that really bother me. I don't know if these are Smugmug issues, if my IE6 settings are hosed or if these issues can be fixed.
Issue #1: When I go to my site via my smugmug url, http://scwalter.smugmug.com/ all is well, no security warnings. If I go to http://www.scottwalterphoto.com/ I see the little privacy report thing pop up and it shows this:
So I highlight the first error: cookiemonster.mg and click on summary and see this:
No privacy report available, so IE does not appear to accept some/all cookies from smugmug.com. I check my security settings for IE and they are set to medium. I think this is the default, but I'm not sure.
Issue #2: So in light of the above issues, I attempt to add some photos to the cart and see what happens. Everything seems okay because once I go to the cart, I'm on www.smugmug.com, but when I hit the "continue browsing" button I see this error.
I think that last one might scare off some legitimate customers.
I've just recently upgraded to a pro account and these things seem broken. If I were a customer looking to buy prints, these errors would leave me doubting whether to actually make the purchase.
Am I doing something wrong or is this really how it's supposed to work?
Thanks,
Scott
Issue #1: When I go to my site via my smugmug url, http://scwalter.smugmug.com/ all is well, no security warnings. If I go to http://www.scottwalterphoto.com/ I see the little privacy report thing pop up and it shows this:
So I highlight the first error: cookiemonster.mg and click on summary and see this:
No privacy report available, so IE does not appear to accept some/all cookies from smugmug.com. I check my security settings for IE and they are set to medium. I think this is the default, but I'm not sure.
Issue #2: So in light of the above issues, I attempt to add some photos to the cart and see what happens. Everything seems okay because once I go to the cart, I'm on www.smugmug.com, but when I hit the "continue browsing" button I see this error.
I think that last one might scare off some legitimate customers.
I've just recently upgraded to a pro account and these things seem broken. If I were a customer looking to buy prints, these errors would leave me doubting whether to actually make the purchase.
Am I doing something wrong or is this really how it's supposed to work?
Thanks,
Scott
Scott Walter Photography
scwalter.smugmug.com
scwalter.smugmug.com
0
Comments
Portfolio • Workshops • Facebook • Twitter
IE6 on WinXP SP2
scwalter.smugmug.com
I'm using default security in IE7.
Do you have an special addons, or software modules that govern your surfing?
I'll check IE6 in a sec.
Portfolio • Workshops • Facebook • Twitter
But you do have IE6 errors on your site. Something in your custom code you made is not IE6-friendly - line 449, object expected....
Portfolio • Workshops • Facebook • Twitter
No additional software, no firewall, norton, etc. I also just tried from my work PC (VPN and then via remote desktop ) and I get the same security warnings. My work PC is only about two weeks old and the default security on it was also set to medium.
-Scott
scwalter.smugmug.com
How did you see that error? Is it a scripting error (Java)?
Also, I checked out your site (moonriverphotography) from home and work and I get exactly the same behavior as shown above, everything from the security warnings about no privacy policy all the way to the security warning when I go from the cart back to browsing.
Thanks,
Scott
scwalter.smugmug.com
Portfolio • Workshops • Facebook • Twitter
Thanks for all the quick respones Andy!!
That's what I thought too, so i just went to Tools/Internet Options.../Security and it said "Custom Level". I hit the button to reset to "default level", cleared my cache, restarted IE6 and the same errors appear.
Is there another way besides this to reset the security settings? Is anyone else seeing this problem? Keep an eye out for the little red icon in the status bar, towards the right side just to the left of the <icon> Internet sign.
Thanks,
Scott
scwalter.smugmug.com
Same error with continuing browsing from the cart, although that's not a bad thing that the cart is secure and your website isn't.
Andrew
58 and see if it helps, can't hurt.
My Website index | My Blog
http://support.microsoft.com/kb/283185
http://www.p3pprivacy.com/
So with medium security as you have set (which I believe is the default in IE6), IE will block cookies from any third-party code running on your site (anything that is access from outside your domain). I don't know if any other web browsers current support p3p or even if they have support planned as I have heard VERY little about it and only in an IE context.
The dialog where it says you are exiting a secure site is perfectly valid and correct. Smugmug cannot provide SSL security for your custom domain name and it is not necessary as your domain is just used to browse photos, not to make any purchases.
Andy,
I believe this statement is not correct. Based on other people replies and my own testing on a two-week old machine, when using a custom URL, Smugmug gives security warnings using the default settings in IE6. If this is really true, I am extremely disappointed. If this is not true, please correct me.
thanks,
Scott
scwalter.smugmug.com
JT
JT,
Thanks for the response. I understand the cookie blocking doesn't affect the functionality, it just surprised me to see that there were warnings.
Fixing the cart warning would be nice, but I understand why it's there for now.
Thanks,
Scott
scwalter.smugmug.com