Interesting.

5 views
Skip to first unread message

Goose

unread,
Dec 6, 2008, 1:56:50 PM12/6/08
to CS193H High Performance Web Sites

Tse-Wen Tom Wang

unread,
Dec 6, 2008, 6:03:25 PM12/6/08
to cs193...@googlegroups.com
Unfortunately DHH is probably wrong here regarding the warning being superfluous. Any page that is served over mixed content (SSL and non-SSL) is likely not secure at all. If you want more details, read the comments below this page. There are just way too many potential ways to hack a mixed content page.

Reply all
Reply to author
Forward
0 new messages