Your Cart

Shopping Cart Items: 0   Sub-Total : $0.00    View Cart    Checkout
Welcome, Guest ( Customer Panel | Login )


Home | Profile | Register | Active Topics | Members | Search | FAQ


Forgot your Password?
 All Forums
 VPCart Forum
 Credit card fraud and hackers
 shopadmin1.asp via https		  New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

kevin
Starting Member

USA
7 Posts
Posted - February 01 2002 :  20:33:49  Show Profile  Visit kevin's Homepage  Reply with Quote
Using version 3.5, although will upgrade to ver 4 soon so question applies to both:

How can I change the links on shopadmin1.asp so that they go via https instead of http?

Thanks
Kevin

fraser
Starting Member

Canada
37 Posts
Posted - February 05 2003 :  01:50:34  Show Profile  Reply with Quote
That sounds like a great feature Required. How would I do this?
So what exactly does the SSL do? Does it prevent people from intercepting form submissions?

Fraser
Go to Top of Page

GTM
VP-CART New User

USA
122 Posts
Posted - February 05 2003 :  20:11:03  Show Profile  Reply with Quote
I would be interested to know how you included the ssl encryption on shopadmin.asp

Greg
Go to Top of Page

rksymons
Starting Member

10 Posts
Posted - February 17 2003 :  04:30:11  Show Profile  Reply with Quote
quote:

I would be interested to know how you included the ssl encryption on shopadmin.asp


You should rename your shopadmin.asp first. If you give it a really obscure filename, the chance of anyone finding it becomes a lot less likely than if you keep the default name for the file.

In order to use SSL, your site requires a certificate from a company like Thawte. Depending on your host, they may also be able to provide you with a self-signed certificate that you can use just for admin -- it offers the same level of encryption, and if you are only using the cert for admin, it is perfectly acceptable.

There is a snippet of asp code at this post -- http://www.vpasp.com/virtprog/vpaspforum/topic.asp?TOPIC_ID=1040 -- that shows one way to "force" a secure request for a particular page.

Here is another way to use asp to do the same thing. I found this on an asp development site, but cannot remember where offhand:

<%
Response.Buffer = True
If (Request.ServerVariables("HTTPS") = "off") Then
Response.redirect "https://www.yoursite.com/yourpage.asp"
End if
%>

Hope this helps.


rks
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
Snitz Forums 2000
0 Item(s)
$0.00
  • Your Cart Is Empty