Issued certificate but URL box displays "Not Secure"


#1

image www.sustainableleads.com

I really don’t know enough about this at all so asking for help! Thanks in advance for any help with this.

I inherited this site from a friend and see that there is an SSL good foor another ~80 days issued through Let’s Encrypt and I’m trying to figure out why the URL box doesn’t display as secure in all situations. In most cases when I visit the site, the URL box reads “Not Secure” before displaying the URL

Can you help with this?


#2

Hi @GregH

you have an interesting configuration ( https://check-your-website.server-daten.de/?q=sustainableleads.com ):

There are 4 ip addresses:

Host T IP-Address is auth. ∑ Queries ∑ Timeout
sustainableleads.com A 198.49.23.144 yes 1 0
A 198.49.23.145 yes 1 0
A 198.185.159.144 yes 1 0
A 198.185.159.145 yes 1 0
AAAA yes
www.sustainableleads.com C ext-sq.squarespace.com yes 1 0
A 198.49.23.144 yes
A 198.49.23.145 yes
A 198.185.159.144 yes
A 198.185.159.145 yes

All have the same content. But you have only redirects non-www -> www:

Domainname Http-Status redirect Sec. G
http://sustainableleads.com/
198.49.23.144 301 http://www.sustainableleads.com/ 0.350 D
http://sustainableleads.com/
198.49.23.145 301 http://www.sustainableleads.com/ 0.293 D
http://sustainableleads.com/
198.185.159.144 301 http://www.sustainableleads.com/ 0.340 D
http://sustainableleads.com/
198.185.159.145 301 http://www.sustainableleads.com/ 0.294 D
http://www.sustainableleads.com/
198.49.23.144 200 0.440 H
http://www.sustainableleads.com/
198.49.23.145 200 0.407 H
http://www.sustainableleads.com/
198.185.159.144 200 0.430 H
http://www.sustainableleads.com/
198.185.159.145 200 0.453 H
https://sustainableleads.com/
198.49.23.144 301 https://www.sustainableleads.com/ 6.693 B
https://sustainableleads.com/
198.49.23.145 301 https://www.sustainableleads.com/ 6.507 B
https://sustainableleads.com/
198.185.159.144 301 https://www.sustainableleads.com/ 6.800 B
https://sustainableleads.com/
198.185.159.145 301 https://www.sustainableleads.com/ 6.503 B
https://www.sustainableleads.com/
198.49.23.144 200 6.593 B
https://www.sustainableleads.com/
198.49.23.145 200 6.770 B
https://www.sustainableleads.com/
198.185.159.144 200 6.987 B
https://www.sustainableleads.com/
198.185.159.145 200 6.693 B

So you have 8 https connections, but all use two certificates:

CN=sustainableleads.com
	30.01.2019
	30.04.2019
expires in 80 days 	sustainableleads.com - 1 entry
CN=www.sustainableleads.com
	30.01.2019
	30.04.2019
expires in 80 days 	www.sustainableleads.com - 1 entry

and all https connections are secure.

So there is no wrong certificate, no insecure connection found. But if you don’t have a redirect, then http + www isn’t redirected -> this is unsecure.

So add redirects in the correct order:

  • First redirect http + non-www -> https + non-www and http + www -> https + www.
  • Then select one preferred version and redirect from your not-preferred version to your preferred version.

PS: You have small mixed content warnings.

link
	canonical
	http://www.sustainableleads.com/

This is inconsistent, if you use https, you don’t want a http as canonical. But browsers doesn’t show this as mixed content (they should, but this is another story).


#3

wow this is incredibly helpful. Although I do understand the basics of what you’re saying, this really isn’t my area of expertise. I’m confused (because of my limited experience) in terms of how I would actually go about changing and implementing those redirects. You described it well I just don’t know what I’m doing. Is there any way that I could hire you to fix the redirect and canonical errors? Thank you for reading


#4

You have already a working redirect http + non-www -> http + www.

Find this redirect (in your VirtualHost with port 80) and change it to

http + non-www -> https + non-www

(Add the s and remove the www. ).

Then add an analogous redirect in your

http + www - VirtualHost

http + www -> https + www

this is only a s.


#5

Who created the current redirections?

What do those redirections look like?


#6

Thanks all! Really appreciate the help! It’s all set


closed #7

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.