Base HREF https issues

[mprough]

Things I have noticed.

- SSL Cert is issued to sourcetech.co.uk
- site does not work without the 'www' in the URL
- invalid characters in JS starting at line 96 of page output
);
//îòñëåæèâàíèå äîïîëíèòåëüíûõ ýëåìåíòîâ
//addListener(document.getElementById('element-id'),

Fixing all of the above will help to sort out some or even a lot, of problems.

The SSL is issued to the www... Non www links are not displayed, but rather 404 as no redirect exists either.

~Melanie

[Website Rob]

- SSL Cert is issued to sourcetech.co.uk << this is easily confirmed

- site does not work without the 'www' in the URL << this is an incorrect setting in Apache

[Website Rob]

Another error noticed.

Access denied to http: //www. sourcetech. co.uk/shop/csshover.htc
(link seperated to prevent SE indexing)

[mprough]

- SSL Cert is issued to sourcetech.co.uk << this is easily confirmed

- site does not work without the 'www' in the URL << this is an incorrect setting in Apache

Maybe I am missing something...

Website Identity is listed as www.sourcetech.co.uk

The sourcetech.co.uk is the common and organizational name. The token is also sourcetech.co.uk, but this is a GoDaddy dumb thing.

Also, GoDaddy doesn't supply the canonical url in the certificate fields. Also, oddly, says it has the CA bundle, but does not appear to have it installed.

All these things led me on a hunt..... I think the SSL is not installed correctly and it may be the result of the server DNS configuration.... On trace the site pulls no IP or route. On lookup no IP either.... and there are no authority records. Then there is this ....

The server name or address could not be resolved
SSL request - No headers downloaded

and this

Ping

[sourcetech.co.uk]

Bad destination
Bad destination
Bad destination
Bad destination
Bad destination
Bad destination
Bad destination
Bad destination
Bad destination
Bad destination

Average time over 10 pings: 0 ms

Suggest the DNS be resolved correctly and the certificate reinstalled... with the CA it will need an IP and it has none.

~Melanie

[DrByte]

Who's the hosting company? We are!! We have our own webserver in a rack locally

Do you have any other domains configured for SSL use, on the same server? Or is SSL entirely new for you?

[mikebackhouse]

Hi Drbyte.. yes, this is completely new to us!

My MD is actually in charge of installing it etc.. and this is the first one we've done (that I'm aware of)

So it seems from mprough's comments that the SSL is installed incorrectly.

We've now had the domain name updated, so sourcetech.co.uk will forward to www. so that should all be working

Ok, stupid question of the day! - What does csshover.htc do? I have several zen cart sites set up, and NONE of them have this file, neither does my zen cart install folder or any of my templates! What does this do exactly?

UPDATE: I've just noticed the csshover.htc file was in the includes folder, so now moved it to the route folder. is this going to help?!

[DrByte]

One of the common SSL config mistakes I've seen is in relation to OpenSSL support not being enabled properly. And, of course, as others have mentioned, incorrectly configured or installed SSL certificates.

If you need assistance properly setting up SSL support on your own self-managed server, I recommend discussing it someplace where hosting and server configuration are the primary focus of discussion ... perhaps such as webhostingtalk.com

Once SSL is working correctly, your Zen Cart should automatically use it (when your configure.php settings are set to use it).

[mikebackhouse]

Hi all.. just been having a think.

Our web server runs IIS, and to get apache to work on it, we installed a program called "IIS MOD-RE WRITE" which tells IIS where to look for the website. Within the config file is a hard coded link to our website, I'm wondering if this might have something to do with the problems I'm having with my SSL certificate?

Has anyone ever come across IIS MOD-RE WRITE before?

[mikebackhouse]

DONE!!

I can't really believe how I managed to fix it, in the configure.php file, I changed the http:// to https:// and its now working! How? Why? I have no idea!

define('HTTP_SERVER', 'https://www.sourcetech.co.uk');
define('HTTPS_SERVER', 'https://www.sourcetech.co.uk');

Thanks for all your help everyone!

[DrByte]

So, now you're running your entire site in SSL?

I wouldn't call that a fix at all.
It may be a workaround, but certainly not a fix.

Did you try disabling your IIS addon for mod-rewrite simulation?