security warning with IE6 and SSL

fago - November 14, 2007 - 16:13

Project:	Drupal
Version:	6.x-dev
Component:	javascript
Category:	bug report
Priority:	normal
Assigned:	Unassigned
Status:	active

Jump to:

Most recent comment

IE6 displays a security warning when the site uses a secure connection and one tries to upload a file. Considering the huge amount of IE6 users, this is quite critical for every drupal site using secure connections. IE7 works fine.

related resources:
http://support.microsoft.com/default.aspx?scid=kb;en-us;261188
http://drupal.org/node/52956
http://drupal.org/node/71004
http://drupal.org/node/60565
http://drupal.org/node/64711#comment-132951

So this bug applies to drupal 5.x too.

Unfortunately I was not able to fix the bug for drupal 6.x. It seams to me that the jquery forms plugin is creating the iframe, so it might be a bug in the plugin.

For drupal 5, the iframe is created by drupal's js. I've attached a patch which fixes the bug for drupal 5.x.

Attachment	Size
drupal_5_upload_IE6.patch	1.04 KB

» Login or register to post comments

#1

fago - November 14, 2007 - 18:43

I've also opened a jquery issue: http://dev.jquery.com/ticket/1928

Login or register to post comments

Drupal is a registered trademark of Dries Buytaert.