New Logos

[MadPinger]

i just uploaded my logos and banner to h-sphere but now it says that the items are unsecured. Is there any way i can get rid of this because it is a hassle if customers have to constantly click ok after every page because of the message saying do u want to show the unsecured items. Please help

[resellerx]

The problem is because the images are not stored on a secure site - but you have secured your control panel - hence the message about secure and insecure items on the same page. I think a possible way around this would be to host the images on another secure server... then you have all secured items on the same page even if they aren't under the same certificate. Not 100% sure that that will work though. I don't think there would be any other way around it as you don't have access to the real control panel server aliased by your domain name.

I'm currently doing exactly what resellerx describes and it works fine. The images are hosted on a different secure server but IE6 with default settings does not give any warnings about that. I haven't tested other browsers. Still, though, I get the warning about the name on the certificate not matching the name of the site, since the certificate on the control panel is for cp.hsphere.cc only. Has anyone found a way around that yet? Boy, would that be nice. =)

[resellerx]

I was going to ask about that actually - it just occured to me how did you secure your control panel? Did you just point your reseller account settings to say that the control panel was:
https://cp.yourdomain.com:8443/
because as mranderson says it won't work without giving an error about the certificate not being valid - and I don't think there's any other way of doing it. There was a huge debate on the psoft forum ages ago about this and I can't remember if anyone ever came up with a way or not. I think that there isn't because people are forever asking for secure reseller control panel support to be included in the next upgrade!

[resellerx]

Just in case you want more, here is a thread on the psoft forum started by Vortech regarding this. Sure enough, no solution exists yet that we can employ as resellers.

http://www.forum.psoft.net/showthrea...&threadid=1074

[MadPinger]

Basically i just went to the change url and made it: https instead of http:// It never gave me an error but always asks if i want to display the non secure items once i uploaded my graphics.

so.. are you using

https://cp.hsphere.cc:8443

or

https://cp.yourdomain.com:8443

? Or something else ?

Let's hope we're onto something =)

[MadPinger]

i use https://cp.sevenfourteen.com:8443

[resellerx]

I visited your (MadPinger) site - and the URL you're using (if you mean the one off your main page under 'Login') is:
https://cp.sevenfourteen.com:8443/
which does give me the error mranderson mentioned ('The name on the security certificate is invalid or does not match the name of the site') as well as the errors regarding nonsecure images.

[MadPinger]

Oh ya you are right. i didn't see that message before. Damn does this mean i have to purchase my own ssl cert?

[MadPinger]

also if i do purchase my own cert does it mean that those logos will be secured? How would that work out?

I wish it was that easy =)

Currently, there doesn't seem to be any way for a reseller to secure his control panel without receiving that error. PSoft is allegedly working on a way around that but I haven't heard any ETA on a fix for that.

I don't know how that's going to work. I suppose it depends on what exactly they change to allow a reseller to secure his control panel. It will be interesting to see...

[MadPinger]

so then do u guys suggest that i just use the http:// site instead of the https one? Also, when customers sign up won't their cc numbers be exposed from the time they hit enter till it reaches the merchant's secure server if i just use http?

[resellerx]

Yes, they will be exposed if you use the unsecure one.

I'm currently writing a custom signup script that is secure that bypasses the need for customers to signup through the control panel automated system. Then there is no need for the control panel to be secure... and it would clear your nonsecure/secure problem if you don't want to host your images on a different secure server.