Are these features necessary to configure on a WordPress site after installing Let's Encrypt?

mhweb · July 30, 2017, 8:27pm

Websites are loading as expected with HTTPS after installing SSL, is it necessary to add redirect rule in the VirtualHost configuration file?

Using the settings below:

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]

I’m running a WordPress website, is it necessary to change the domain http to https in the database?

In my WordPress site, do I have to replace every internal link with http:// and rewrite it to https://?

When install Let’s Encrypt is OCSP stapling on your Apache server enabled? I read that this feature can speed up the loading time, do I need to enable in the VirtualHost configuration file?

Is it necessary to enable Strict Transport Security Header (HSTS) in the Apache server?

jsha · July 30, 2017, 10:32pm

You’ll need to update all image, stylesheet, and JavaScript links in your site, including in your database. Images are usually the biggest issue because their URLs wind up in the database of posts most often.

If your site is already redirecting to https automatically you don’t need to add the redirect code you showed; otherwise, yes.

OCSP stapling and HSTS are beneficial features, but you don’t need them right away. Once you’ve got your site working well with HTTPS you may want to consider implementing them.

system · August 29, 2017, 10:32pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.