Badly need help... SSL Site Security, and Friendly Images URL not working

[Joey Flores]

Hi Everyone,

 

As the title states, I need your help.

1) I have been emailing my hosting provider back and forth for a week now trying to solve my SSL issue. I had asked them to install my comodo positive ssl for my site (twiceasnicebaby.com), which they did, but the ssl only works on the backend. On the front end it shows a padlock with a yellow triangle, saying:

 

Your connection to twiceasnicebaby.com is encrypted with 256-bit encryption. However, this page includes other resources which are not secure. These resources can be viewed by others while in transit, and can be modified by an attacker to change the look of the page.

 

The connection uses TLS 1.0.

 

The connection is encrypted using AES_256_CBC, with SHA1 for message authentication and RSA as the key exchange mechanism.

 

I had tried to use whynopadlock.com to check and shows that I do not have a 404 page, and that it redirects the site to the http://twiceasnicebaby.com not https://, but when I installed prestashop, I made sure that the https:// was selected.

 

I had enabled the SSL option in the preference menu, and I don't know what else to do. I have another website that I use for Wordpress, that was fully secured with another SSL, then I tried to install Prestashop, and it also shows the padlock with the yellow triangle, even with the default template, so I know it is not the template I use. I just want to get my site secured so I can finish the site. 

 

2) Friendly URL is turned on, and my images are not working and have been replaced with question marks throughout the whole site. If I turn it off, the images are fine. I went to my file manager, and noticed that the images are being saved in wrong folders. For Example, the image named 32-white dress.jpg, in my file manager, there is a folder named 3 and a subfolder named 2, which is why I think it is not showing the images, how do I fix this? It will be a nightmare if I have to do it manually for every product that I have. I had contacted my hosting provider and they verified that URL rewriting is enabled.

 

Please, any help would be greatly appreciated.

 

Best regards,

Joey 

 

[Joey Flores]

Anyone?

[arash_a2k]

I have an answer for your number 2 problem ! I had this problem on my localhost. What I did that made this right was: going to my Apache and enable the "rewrite_module" I hope this solves your problem.

[Joey Flores]

I have an answer for your number 2 problem ! I had this problem on my localhost. What I did that made this right was: going to my Apache and enable the "rewrite_module" I hope this solves your problem.

Hi Arash,

 

Can you please tell me how to access the apache and to enable the "rewrite_module" step by step? I am still kind of new to this... I appreciate all your help...

 

Best regards,

Joey

[arash_a2k]

I am on localhost and using wampserver :

click on wampserver -> apache -> apache modules - > rewrite-module

 

if you are on a remote server ask your host provider to do this for you.

 

PLz inform me if this solved your problem. Wish you luck !

Edited October 7, 2013 by arash_a2k (see edit history)

[eyedesigned]

I might have an answer for your number 1 answer.  Don't know if you figured it out or not.  Just go to www.whynopadlock.com and paste link there to your secure site.  It will run a test and give you any mistakes on why your padlock doesn't show fully secure.

[ricky11]

hi guys, any news on this.   all the css and google fonts like to http, but when i go to the tpl file i find that the url is (url) not http:

 

so somewhere else http is defined, how do you force https on secure pages for external links like sharethis google fonts, etc.

[ricky11]

Hi Joey did you solve your problem no.1 ?