VP-ASP :: Shopping Cart Software

Shopping Cart Software Solutions for anywhere in the World

US/Canada(Toll Free): +1 888 587 2278
Europe/UK: +44 (020) 7193 9408
Australia/New Zealand: +61 3 9016 4497

VP-Cart StoreFront Customer Forum

Home | Profile | Register | Active Topics | Members | Search | FAQ
Save Password
Forgot your Password?

 All Forums
 VPCart Forum
 Credit card fraud and hackers
 shopadmin1.asp via https
 New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

Starting Member

7 Posts

Posted - February 01 2002 :  20:33:49  Show Profile  Visit kevin's Homepage  Reply with Quote
Using version 3.5, although will upgrade to ver 4 soon so question applies to both:

How can I change the links on shopadmin1.asp so that they go via https instead of http?


Starting Member

37 Posts

Posted - February 05 2003 :  01:50:34  Show Profile  Reply with Quote
That sounds like a great feature Required. How would I do this?
So what exactly does the SSL do? Does it prevent people from intercepting form submissions?


Go to Top of Page

VP-ASP New User

122 Posts

Posted - February 05 2003 :  20:11:03  Show Profile  Reply with Quote
I would be interested to know how you included the ssl encryption on shopadmin.asp


Go to Top of Page

Starting Member

10 Posts

Posted - February 17 2003 :  04:30:11  Show Profile  Reply with Quote

I would be interested to know how you included the ssl encryption on shopadmin.asp

You should rename your shopadmin.asp first. If you give it a really obscure filename, the chance of anyone finding it becomes a lot less likely than if you keep the default name for the file.

In order to use SSL, your site requires a certificate from a company like Thawte. Depending on your host, they may also be able to provide you with a self-signed certificate that you can use just for admin -- it offers the same level of encryption, and if you are only using the cert for admin, it is perfectly acceptable.

There is a snippet of asp code at this post -- http://www.vpasp.com/virtprog/vpaspforum/topic.asp?TOPIC_ID=1040 -- that shows one way to "force" a secure request for a particular page.

Here is another way to use asp to do the same thing. I found this on an asp development site, but cannot remember where offhand:

Response.Buffer = True
If (Request.ServerVariables("HTTPS") = "off") Then
Response.redirect "https://www.yoursite.com/yourpage.asp"
End if

Hope this helps.


Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
Snitz Forums 2000