Broken pages after SSL been installed on Apache?

grx7 · October 9, 2018, 9:45pm

hi guys, after running this tutorial:

My ssl serves broken page, how to fix it?

rg305 · October 9, 2018, 9:59pm

Try checking your site with: https://www.whynopadlock.com/

or provide a more detailed explanation (picture) of the problem.

JuergenAuer · October 9, 2018, 11:53pm

Hi @grx7

you have terrible mixed content warnings / blocks.

Use FireFox / Chrome, then Ctrl + Shift + I, open the Console.

https://209.97.176.152/wp-includes/js/jquery/jquery.js?ver=1.12.4

Loading this page says:

SSL_ERROR_BAD_CERT_DOMAIN - certificate only valid with locksmithboys.com

Never load content via an ip address.

Change these links to relative links

/wp-includes/js/jquery/jquery.js?ver=1.12.4

or correct absolute links:

https://locksmithboys.com/wp-includes/js/jquery/jquery.js?ver=1.12.4

Then the browser loads these scripts -> your page will work.

grx7 · October 10, 2018, 12:03am

it’s a standard message from WP by default. I didn’t touch it.

Check http://www.locksmithboys.com/

hwh · October 10, 2018, 3:55am

As Juergen said you can’t load parts of a secure page by IP address, it just doesn’t work.

Somewhere in the wordpress settings you gave it the 209.97.176.152 IP address instead of the locksmithboys.com domain name. I think it’s under settings -> general settings. The same settings page has the site title and tagline settings. Wordpress shouldn’t have the IP address in any of it’s settings.

grx7 · October 10, 2018, 4:41am

you nailed it

thanks a lot. it works now.

After changing it in WP admin Settings–> General it works fine

Would you guys recommend I keep my .htaccess to always redirect towards https?

JuergenAuer · October 10, 2018, 8:24am

Happy to see you fixed your mixed content warnings.

If your certificate works and if you are sure you can check the renew (no expired certificate): Yes, a redirect is good.

Better is the HSTS header, excellent is the preload directive (HSTS per browser).

grx7 · October 10, 2018, 5:48pm

thanks Juergen!

I saw this in regards to auto renewing the SSL certificate:

https://community.letsencrypt.org/t/renew-letsencrypt-certificate/34677/3

but

shows that I need to run:

$ sudo certbot renew --dry-run

How do you guys auto renew yours?

JuergenAuer · October 10, 2018, 6:29pm

--dry-run has some limitations and uses the testsystem. So if you want to renew your certificates,

sudo certbot renew

is correct.

I have my own client

grx7 · October 10, 2018, 6:40pm

thanks for helping out guys.

system · November 9, 2018, 6:40pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.