I really don’t know enough about this at all so asking for help! Thanks in advance for any help with this.
I inherited this site from a friend and see that there is an SSL good foor another ~80 days issued through Let’s Encrypt and I’m trying to figure out why the URL box doesn’t display as secure in all situations. In most cases when I visit the site, the URL box reads “Not Secure” before displaying the URL
Can you help with this?
Hi @GregH
you have an interesting configuration ( https://check-your-website.server-daten.de/?q=sustainableleads.com ):
There are 4 ip addresses:
| Host | T | IP-Address | is auth. | ∑ Queries | ∑ Timeout |
|---|---|---|---|---|---|
| sustainableleads.com | A | 198.49.23.144 | yes | 1 | 0 |
| A | 198.49.23.145 | yes | 1 | 0 | |
| A | 198.185.159.144 | yes | 1 | 0 | |
| A | 198.185.159.145 | yes | 1 | 0 | |
| AAAA | yes | ||||
| www.sustainableleads.com | C | ext-sq.squarespace.com | yes | 1 | 0 |
| A | 198.49.23.144 | yes | |||
| A | 198.49.23.145 | yes | |||
| A | 198.185.159.144 | yes | |||
| A | 198.185.159.145 | yes |
All have the same content. But you have only redirects non-www -> www:
So you have 8 https connections, but all use two certificates:
CN=sustainableleads.com
30.01.2019
30.04.2019
expires in 80 days sustainableleads.com - 1 entry
CN=www.sustainableleads.com
30.01.2019
30.04.2019
expires in 80 days www.sustainableleads.com - 1 entry
and all https connections are secure.
So there is no wrong certificate, no insecure connection found. But if you don’t have a redirect, then http + www isn’t redirected -> this is unsecure.
So add redirects in the correct order:
PS: You have small mixed content warnings.
link
canonical
http://www.sustainableleads.com/
This is inconsistent, if you use https, you don’t want a http as canonical. But browsers doesn’t show this as mixed content (they should, but this is another story).
wow this is incredibly helpful. Although I do understand the basics of what you’re saying, this really isn’t my area of expertise. I’m confused (because of my limited experience) in terms of how I would actually go about changing and implementing those redirects. You described it well I just don’t know what I’m doing. Is there any way that I could hire you to fix the redirect and canonical errors? Thank you for reading
You have already a working redirect http + non-www -> http + www.
Find this redirect (in your VirtualHost with port 80) and change it to
http + non-www -> https + non-www
(Add the s and remove the www. ).
Then add an analogous redirect in your
http + www - VirtualHost
http + www -> https + www
this is only a s.