My question has to do with the use of frames and SSL. If I a reference a page using for example (https://www.mydomain.com/default.asp) which has multiple frames (i.e. banner, navigation, & main)

The classic example would be a signup page in the main frame which posts to itself as in:

<form method="POST" action="login.asp">
<input type="text" name="username">
<input type="password" name="password">
...
<input type="submit" value="Submit">
</form>

The default target frame would be the main frame. So I'm guessing the BASE URL of the page login.asp is https://www.mydomain.com/, or if the user clicks submit, is the "effective" post to https://www.mydomain.com/login.asp?

Is that correct? Are form posts within the main frame also secure?

Thanks.

P.S. I did search for this topic but without success. Most topics discussed wether the little lock icon would appear if you reference a SSL page within a frame. In my case since I'm reference the _top level frame with https: the lock icon does appear, but I'm not sure if the pages within the frame are secure.

>The default target frame would be the main frame. So I'm guessing the BASE URL of the >page login.asp is https://www.mydomain.com/, or if the user clicks submit, is the >"effective" post to https://www.mydomain.com/login.asp?
yes

----------------------------
http://aeonofdarkness.com