Hi, last night my website started accepting only HTTPS connection? I have changed nothing, it appears to have a signed by a ‘Lets Encrypt’ certificate, i did not do this…who did and how?? Any help would be appreciated, thanks
Well, Let’s Encrypt didn’t issue a certificate on their own, and they certainly didn’t configure your website to use it. And if your site is showing secure with the Let’s Encrypt cert, that pretty well rules out anything malicious. So either this is something you did yourself, something your software did on its own, or you have someone else managing your site who did it.
I think you should try to escalate this question with the Yay support folks. The account that issued a certificate for this domain has a contact address associated with this company.
thanks found the culprit, Yay.com added the certificate and the combination of Chrome 69 has resulted in the perfect storm, have changed the fwd policy removed the iFrame mask, thanks again Neil