SSL mixed content - jquery.min.s

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • gajj
    Member
    • Dec 2009
    • 43
    • 3.8.x
    #1

    SSL mixed content - jquery.min.s

    There's probably a really simple answer to this but whn I carry out a mixed content check I see the same non-SSL link popping up: http://ajax.googleapis.com/ajax/libs.../jquery.min.js

    I can't see where to change that but if I go to:

    Server Settings and Optimization Options--->Custom Remote jQuery Path

    I see the following: ajax.googleapis.com/ajax/libs/jquery/{version}/jquery.min.js

    that is the SSL version as far as I know so shouldn't be the cause of the mixed content warning but is this the setting that needs to be changed or is it correct or do I need to look somewhere else to change the ajax.googleapis link to https?
    Last edited by gajj; Tue 14 Feb '17, 10:08am.
    Tags: None
    • Wayne Luke
      vBulletin Technical Support Lead
      • Aug 2000
      • 73464
      • 6.0.X
      #2
      Remove the custom path. Set the Remote jQuery Option to Google or None.
      Translations provided by Google.

      Wayne Luke
      The Rabid Badger - a vBulletin Cloud demonstration site.
      vBulletin 5 API

        Comment

        • gajj
          Member
          • Dec 2009
          • 43
          • 3.8.x
          #3
          I set it to "none", rebuilt styles and still I see http://ajax.googleapis.com/ajax/libs.../jquery.min.js in the page source. Mixed content checker still shows this on all pages checked regardless of whether I set "none", "Google" etc"

            Comment

            • Mark.B
              vBulletin Support
              • Feb 2004
              • 24275
              • 6.0.X
              #4
              Make sure you clear your browser cache and restart the browser.
              MARK.B
              vBulletin Support
              ------------
              My Unofficial vBulletin 6.0.0 Demo: https://www.talknewsuk.com
              My Unofficial vBulletin Cloud Demo: https://www.adminammo.com

                Comment

                • gajj
                  Member
                  • Dec 2009
                  • 43
                  • 3.8.x
                  #5
                  Hi,

                  I have been doing that all along. It is still there in the page source:

                  //--> </script> <script type="text/javascript" src="https://www.website.com/forum/clientscript/vbulletin-sidebar.js?v=423"></script> <link rel="stylesheet" type="text/css" href="https://www.website.com/forum/css.php?styleid=52&amp;langid=1&amp;d=1487099766&amp;td=ltr&amp;sheet=additional.css" /> <script src="http://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js" type="text/javascript"></script> <script>

                  Remote YUI and remote jquery are both set to "Google"
                  Last edited by gajj; Tue 14 Feb '17, 11:09pm. Reason: amended first line

                    Comment

                    • Wayne Luke
                      vBulletin Technical Support Lead
                      • Aug 2000
                      • 73464
                      • 6.0.X
                      #6
                      Then set it to none. Plus the Custom field has to be completely empty.
                      Translations provided by Google.

                      Wayne Luke
                      The Rabid Badger - a vBulletin Cloud demonstration site.
                      vBulletin 5 API

                        Comment

                        • gajj
                          Member
                          • Dec 2009
                          • 43
                          • 3.8.x
                          #7
                          Tried that. I've tried every permutation followed by clearing browser cache, clearing forum cache, hopping on one foot for a bit, sneaking up on my computer and scaring it but but every time I view page source that http:// link is still there. SSL Checker finds it on every page it checks and it's the only insecurity it can find. Replacement variable changing all http:/ to https:/ didn't affect it. I can't find the link in any template. It's bizarre.

                            Comment

                            • Mark.B
                              vBulletin Support
                              • Feb 2004
                              • 24275
                              • 6.0.X
                              #8
                              Originally posted by gajj
                              Tried that. I've tried every permutation followed by clearing browser cache, clearing forum cache, hopping on one foot for a bit, sneaking up on my computer and scaring it but but every time I view page source that http:// link is still there. SSL Checker finds it on every page it checks and it's the only insecurity it can find. Replacement variable changing all http:/ to https:/ didn't affect it. I can't find the link in any template. It's bizarre.
                              Yours is right below some vBSEO code and the code immediately after it is not present on my own site.

                              It is likely related to vBSEO.

                              For a start, consider removing vBSEO completely - the company that wrote it has been defunct for years and the code is full of security holes. It's only a matter of time before you get compromised.

                              Beyond that, I'm unfamiliar with vBSEO's code but I think vBSEO is adding this.
                              MARK.B
                              vBulletin Support
                              ------------
                              My Unofficial vBulletin 6.0.0 Demo: https://www.talknewsuk.com
                              My Unofficial vBulletin Cloud Demo: https://www.adminammo.com

                                Comment

                                • gajj
                                  Member
                                  • Dec 2009
                                  • 43
                                  • 3.8.x
                                  #9
                                  Thanks Mark. Yes, that is a definite possibility. The removal of VBSEO is in hand as I write this.

                                    Comment

                                    • Mark.B
                                      vBulletin Support
                                      • Feb 2004
                                      • 24275
                                      • 6.0.X
                                      #10
                                      Originally posted by gajj
                                      Thanks Mark. Yes, that is a definite possibility. The removal of VBSEO is in hand as I write this.
                                      Be aware that removing it changes all your URLs and thus your results in Google (if any) will fail. You might need to plan it a bit more carefully.

                                      In the interim, it would be worth looking for where vBSEO sets that particular URL. Not sure how it works but it could be - a template, a setting in their control panel, or hard coded in a file.

                                      Shouldn't be hard to solve it.
                                      MARK.B
                                      vBulletin Support
                                      ------------
                                      My Unofficial vBulletin 6.0.0 Demo: https://www.talknewsuk.com
                                      My Unofficial vBulletin Cloud Demo: https://www.adminammo.com

                                        Comment

                                        • gajj
                                          Member
                                          • Dec 2009
                                          • 43
                                          • 3.8.x
                                          #11
                                          Originally posted by Mark.B

                                          Be aware that removing it changes all your URLs and thus your results in Google (if any) will fail. You might need to plan it a bit more carefully.
                                          Yes indeed. 6 years worth of indexed content that I don't want to mess with. I don't have the expertise to tackle the removal and redirection myself so I am paying a coder who offered to take the job on.

                                          Originally posted by Mark.B
                                          In the interim, it would be worth looking for where vBSEO sets that particular URL. Not sure how it works but it could be - a template, a setting in their control panel, or hard coded in a file.

                                          Shouldn't be hard to solve it.
                                          On that now. Haven't found anything yet but hope to.

                                            Comment

                                            Previous template Next

                                            Related Topics

                                            Collapse
                                            Working...
                                            😀
                                            😂
                                            🥰
                                            😘
                                            🤢
                                            😎
                                            😞
                                            😡
                                            👍
                                            👎