Welcome to WebmasterWorld Guest from 54.167.83.224

Forum Moderators: ergophobe

Message Too Old, No Replies

ssl exception in browser - best practice

     
8:44 am on Aug 23, 2010 (gmt 0)

New User

5+ Year Member

joined:Aug 23, 2010
posts: 3
votes: 0


Hello All,

If I tell you

"Please have a look at my demo site [demo.mydomain.tld"....]
My SSL certificate is only valid for www.mydomain.tld, so your browser will complain and you will have to add an exception to access the site.
",

there is no problem for you to connect on my demo site.

But if I say the same to my mother in law, the result can't be predicted.

So I'm looking for a cool way to set ssl exceptions in popular browsers.

Any suggestion ? (other than "get a wildcard certificate" and "use another url")

TIA
10:55 am on Aug 23, 2010 (gmt 0)

Administrator

WebmasterWorld Administrator phranque is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Aug 10, 2004
posts:10542
votes: 8


welcome to WebmasterWorld [webmasterworld.com], erpo!

this is all under user control in the browser and can't be affected by the server or even by a client-side script such as javascript nor embedded app such as java or flash.
perhaps an add-on/plugin could bypass the ssl exception dialog.
11:32 am on Aug 23, 2010 (gmt 0)

Senior Member

WebmasterWorld Senior Member jdmorgan is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:Mar 31, 2002
posts:25430
votes: 0


The best solution is to get a "wild-card" SSL certificate that applies to both example.com and www.example.com and <anything>.example.com

Jim
1:15 pm on Aug 23, 2010 (gmt 0)

New User

5+ Year Member

joined:Aug 23, 2010
posts: 3
votes: 0


@phranque:

I know that user collaboration is needed.

I just want to ease the process. In my particular case, access is only by invitation, each user receives a mail before connecting. I could attach an executable and ask the user to run it.

Or I could send the certificate with detailed instructions ?
5:20 pm on Aug 23, 2010 (gmt 0)

Senior Member

WebmasterWorld Senior Member rocknbil is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:Nov 28, 2004
posts:7999
votes: 0


Why not run the demo in a directory of the parent instead of a subdomain?
6:04 pm on Aug 23, 2010 (gmt 0)

New User

5+ Year Member

joined:Aug 23, 2010
posts: 3
votes: 0


Redesigning (or correct design mistakes as you could call it) is not an option.

I created this thread to make sure there were no easy way to solve my problem without purchasing another certificate.

I'll try first with instructions in the invitation mail. If it causes too much trouble to my users, I'll purchase a wildcard certificate.

Thank you for your time.
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

Featured Threads

Free SEO Tools

Hire Expert Members