Important SSL Notice for Yahoo! Store Clients

Posted on September 24th, 2008 by Colorado Web Solutions - Yahoo Store Developers and Designers

This notice was just sent out to all of our clients. We’re posting it in the blog as well.

Yahoo! Store SSL Security Changes – FINAL NOTICE

IMPORTANT NEWS from Colorado Web Solutions

We’ve already let you know about a major security change that Yahoo! is implementing that could effect your Yahoo! Store. If you are one of our clients without a Yahoo! Store, you can ignore this notice.

It’s extremely important that you read this information as your stores cart could be crippled or warn your visitors of a lack of security if you are one of the effected carts. If you have already verified that your store is not effected or if you have submitted the form already you can disregard this notice.

This is the final warning we’re sending about this change.

What’s the Issue? In very basic terms, Yahoo! is changing the locations of the images in your store that are displayed in your cart. These images are displayed from a secure server to protect your customers data. The Secure Server locations are changing. Images that are being pulled from that server need to be re-coded to pull from the new servers. That’s the down and dirty of what’s happening. Read More from Yahoo

Does this effect my store? We need you to check!

There is a very easy way to determine if this is going to effect your store. With all of the clients we have we are not able to check each of your stores, so we are relying on you to check to see if you need your images updated.

1. Go to your live store (the customer’s version)
2. Add Something to your cart
3. Start the checkout process
   1. 1. * NOTE: If you do not have a custom checkout, you are not effected by these changes. If your checkout is branded to your store, you could be.
4. Once you’re in your first screen of checkout check a few images
5. There are a number of ways to check the URL of an image, but one of the easiest (if you’re using Firefox) is to right click on an image and select “View Image”. Once you see the image, look at the URL bar at the top of your browser. This is where you’ll find the URL for that particular image.
6. If you are using Internet Explorer, right click the image and select “Properties”. The URL is listed on this screen toward the middle.
7. Please Note: Do not use product images for the samples, instead please use your logo and other custom graphics we added for you.
8. Once you know the URL, check to see if the link starts with this:
   https://s.p2.hostingprod.com/@yourdomain.com

   Keep in Mind the p2 portion could be a different number (i.e. p12)

9. Please check at least two different images on your checkout page.
10. If your URL starts with any pattern different than the sample above, including a slightly modified version of the link above (p2.secure.hostingprod) you’re not effected by this change and can disregard this email.
11. If you ARE effected by this change please read on.

My Site has Images on the old Server… Now what? Not to panic :) We’ve got you covered.

All you need to do is fill out the form below and we’ll get it all taken care of for you.

Please make sure you’ve performed the test above as the form you will out will ask for two examples of images on the old server.

Please note, once your form is submitted, we will get the issues taken care of and by the 15th of October (and probably much earlier) we’ll have made the changes. You can verify by performing the same test on your site as outlined above. We will not contact you to let you know the site is completed.

Let us know ASAP if your site is effected!

The deadline for the switch is October 15th, but we’re going to need time to get this completed, so we are requesting that you notify us no later than October 1st, 2008 if you are in need of a checkout modification.Letting us know is very easy, please click on the link to the form below.

IF YOUR SITE IS EFFECTED, PLEASE LET US KNOW ASAP AT THIS LINK:

https://cws.wufoo.com/forms/yahoo-store-cart-security-upgrade-needed/

Can I take care of this on my own? Absolutely.

If you are fairly savvy with minor HTML work and know how to get into the depths of your checkout manager, feel free to address this on your own. Please be careful though, you can very easily break code in the checkout manager, and CWS is not responsible if you do.

To read more Yahoo!’s suggestions about how to fix this please click here.

On behalf of Yahoo! Store, we’re sorry for the inconvenience, but you can trust that Yahoo! has your best interest at hand with this change to stronger security.

Again, we can’t stress this enough, we need YOU to let us know if you need changes made. We appreciate your time on this.

Here’s that link again:
https://cws.wufoo.com/forms/yahoo-store-cart-security-upgrade-needed/

Sincerely,

Your Colorado Web Solutions Team