Actually more specifically a web site development issue. You most
likely have static links pointing to content in your web development
code (html, css, php, whatever language they have). mod_rewrite
doesn't rewrite your actual code, you need to do that.

An *example* would be .
When you attempt to access this on a secure page a certain web browser
(HINT: IE) goes all nutty and complains like you mention in your
original request. This is definitely not the correct place for the
problem you experience. A good & decent google search would've clued
you in on any of this. I highly suggest this website on how to use
Google: http://www.googleguide.com/

On 9/19/07, a k wrote:
> Pretty sure that is a browser issue and not a web site issue.
>
>
> Lindsay Hausner wrote:
>
>
> -----Original Message-----
> From: owner-modssl-users@modssl.org [mailtowner-modssl-users@modssl.org]
> On Behalf Of Jones, Stephen (SJONES)
> Sent: Friday, August 03, 2007 10:16 AM
> To: modssl-users@modssl.org
> Subject: Urgent help please
>
> Hello,
>
> My site just did a redesign and now the SSL's do not work as desired
> and I have no clue why.
>
> Here is the scenario:
>
> The Home page on initial connection is NOT using SSL.
>
> I can select any noon SSL page and remain a noon SSL page
>
> I select one of the 2 SSL pages and I get SSL (ie: https in the address
> bar and the lock icon in the browser)
>
> From this point on every page is now defined as SSL. I see this by
> picking
> any link on the page and the link displayed in the lower left corner is
> listed as https. If I choose the link the address bar is https and the
> lock icon appears.
>
> The problem is that if I choose any of the links back to the Home page I
> get the POP up "This page contains both secure and non secure item."
>
> The address bar stays as https but the lock icon disappears.
>
> No changes were made to the httpd.conf or ssl.conf files.
>
> I have the following redirects in place and I can see the first 2
> working when I enable rewrite logging.
>
> I never see the 3rd one run.
>
> RewriteCond %{HTTPS} !=on
> RewriteCond %{REQUEST_URI} ^.*/cf/store/.*
> RewriteRule ^/(.*) https://%{SERVER_NAME}/$1 [L,R]
>
>
> ## For Digsig
> RewriteCond %{HTTPS} !=on
> RewriteCond %{REQUEST_URI} ^.*/cf/digsig/.*
> RewriteRule ^/(.*) https://%{SERVER_NAME}/$1 [L,R]
>
> ## For Everything Else
> RewriteCond %{HTTPS} =on
> RewriteCond %{REQUEST_URI} ^.*/.*
> RewriteRule ^/(.*) http://%{SERVER_NAME}/$1 [L,R]
>
> Any suggestions as to what or where to look would be greatly
> appreciated.
>
> Sorry for the delay.
>
> "This page contains both secure and non secure item." means there are url
> paths in page oontent (usually graphics...image sources for links and the
> like) which are http (and need to be https). I'm not to familiar w/
> mod_rewrite, but a guess is that your rules apply to actual links, but not
> urls for content such as .gif or .jpg files.
>
> Hope this helps.
>
> lh..
>
>
>
>
> ________________________________
> Moody friends. Drama queens. Your life? Nope! - their life, your story.
> Play Sims Stories at Yahoo! Games.
>
>

__________________________________________________ ____________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org