You all need to be aware that the Tickeweb secure ordering may not be all that secure!

I have a mate who works in IT and seems that ticketweb order page where you enter your credit card details is not encrypted! So your card details may be sent in plain text across the Internet for all to see. I told ticketweb about this on several occasion and they assured me that it was only a temporary problem. If you don’t believe me, try going through the order process and wait until you get to the page asking for your credit card details and notice that you don’t get the little yellow padlock in the bottom right hand corner of your internet browser that indicates that all internet traffic between your PC and their site is being encrypted.

This is why I used the telephone hot line when I placed my order. I hadn’t heard anything for over 23 days, but when I called and tried to ask for some compensation for waiting so long, to my horror they told me that they couldn’t as they were just a order bureau and not ticketweb and the way they process your order is to simply to log on to the unsecured ticketweb site with your card details and make the order!!!

Ticketweb - could you please confirm ASAP!

I noticed this morning when i went to ordered, so like yourself i phoned instead.

One thing to note, when you call to order tickets they use PC's!! I really hope they are the right side of the firewall or are they just orderering online for you!!!???

THIS SHOULD BE SORTED OUT NOW. I WOULD RECOMMEND ANYBOADY WHO HAS ORDERED ONLINE TO CHECK THEIR CREDIT CARD HASNT BEEN USED.

THIS IS NOT ACCPECTABLE

Well I just tried ordering tickets as a test and when it opens the shopping basket it moved to a secure connection with the padlock - a https connection. Thats using IE 5.5 with all the patches.

Paul..

I have IE 6.0.2800.x.x.x with SP1. The link to the secure order page brings up an http connection only and no padlock. This is also the same from my friends PC who’s using IE 5.5.

As soon as it passes me from (for example) http://www.ticketweb.co.uk/user/?region=uk&query=detail&event=67108&interface=walesrally when I click the Proceed button I get a https link at https://www.ticketweb.co.uk/user/uk/seating showing me the ticket type etc...

Paul..

Paul

I tried your link and it does take me straight into the secure page displaying: “Please select an admission level for each ticket in this order"

However, when I navigate to this same page from:
Home Page
->Spectators
->Click here for full ticket information
->Click Here to buy tickets online
->Event Pass
->Add to Cart
->Proceed.

The page displaying "Please select an admission level for each ticket in this order" is a standard http connection and not https as displayed through your link.

Could this be a bug?

After a couple of emails to the MSA and Ticketweb, this has now been fixed.
Many thanks to Tim at MSA and to Ticketweb for responding so quickly.

No it's ok. I work in IT and been looking at this and the buy pages are secure. The reason the padlock doesn't appear is due to the secure pages (where you enter your credit card details and stuff) being nested within a frame which is a bit like a window which can display another web page within another The padlock only applies to the main page which is being displayed and not the pages nested within it. You can check this yourselves by right clicking on the menu option and opening these buy pages in a new window so you see the security certificates which do apply to these pages.