I really don’t know enough about this at all so asking for help! Thanks in advance for any help with this.
I inherited this site from a friend and see that there is an SSL good foor another ~80 days issued through Let’s Encrypt and I’m trying to figure out why the URL box doesn’t display as secure in all situations. In most cases when I visit the site, the URL box reads “Not Secure” before displaying the URL
Can you help with this?
Hi @GregH
you have an interesting configuration ( https://check-your-website.server-daten.de/?q=sustainableleads.com ):
There are 4 ip addresses:
| Host | T | IP-Address | is auth. | ∑ Queries | ∑ Timeout |
|---|---|---|---|---|---|
| sustainableleads.com | A | 198.49.23.144 | yes | 1 | 0 |
| A | 198.49.23.145 | yes | 1 | 0 | |
| A | 198.185.159.144 | yes | 1 | 0 | |
| A | 198.185.159.145 | yes | 1 | 0 | |
| AAAA | yes | ||||
| www.sustainableleads.com | C | ext-sq.squarespace.com | yes | 1 | 0 |
| A | 198.49.23.144 | yes | |||
| A | 198.49.23.145 | yes | |||
| A | 198.185.159.144 | yes | |||
| A | 198.185.159.145 | yes |
All have the same content. But you have only redirects non-www -> www:
So you have 8 https connections, but all use two certificates:
CN=sustainableleads.com
30.01.2019
30.04.2019
expires in 80 days sustainableleads.com - 1 entry
CN=www.sustainableleads.com
30.01.2019
30.04.2019
expires in 80 days www.sustainableleads.com - 1 entry
and all https connections are secure.
So there is no wrong certificate, no insecure connection found. But if you don't have a redirect, then http + www isn't redirected -> this is unsecure.
So add redirects in the correct order:
PS: You have small mixed content warnings.
link
canonical
http://www.sustainableleads.com/
This is inconsistent, if you use https, you don't want a http as canonical. But browsers doesn't show this as mixed content (they should, but this is another story).
wow this is incredibly helpful. Although I do understand the basics of what you’re saying, this really isn’t my area of expertise. I’m confused (because of my limited experience) in terms of how I would actually go about changing and implementing those redirects. You described it well I just don’t know what I’m doing. Is there any way that I could hire you to fix the redirect and canonical errors? Thank you for reading
You have already a working redirect http + non-www -> http + www.
Find this redirect (in your VirtualHost with port 80) and change it to
http + non-www -> https + non-www
(Add the s and remove the www. ).
Then add an analogous redirect in your
http + www - VirtualHost
http + www -> https + www
this is only a s.
Who created the current redirections?
What do those redirections look like?
Thanks all! Really appreciate the help! It’s all set
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.