35% OFF EVERYTHING
Our 11th BIRTHDAY SALE
Buy Now

Setting Up SSL

This topic contains 20 replies, has 2 voices, and was last updated by  Paolo 9 years, 7 months ago.

We have moved to a support ticketing system and our forums are now closed.

Open Support Ticket
  • Author
    Posts
  • September 8, 2015 at 12:52 pm #52417

    adyp
    Expired Member
    Post count: 496

    Hello,

    I would like some pointers about setting up SSL please.

    I have a Certificate installed on my server and would now like to activate it for my site. I have searched out some threads here on SSL and see there may be some problems with various themes and plugins. I am using GDF Modern Child theme and various plugins, including BuddyPress/BBPress and a password-protection plugin while the site is in development.

    My questions boil down to these (initially!):

    – IS it better with Geodirectory to force SSL for ALL pages, or to focus on those pages where sensitive information is transmitted (does SSL make maps too slow to load?)

    – what plugins or (simple to use) tools are recommended to set up SSL (beyond setting the URLs to HTPPS in WordPress General Settings?

    Thanks,

    Adrian

    September 8, 2015 at 6:31 pm #52465

    Paolo
    Site Admin
    Post count: 31211

    HI,

    ssl or no ssl will have no impact on your website speed. In addition you can’t activate ssl selectively. A website is either under https or not.

    Other than setting the URLs to HTTPS in WordPress General Settings, you will need to find ands replace all URL saved in your database.

    find http://yoursite.com and replace with https://yoursite.com

    This tool is super easy to use and will help you complete this in just a couple of minutes: https://interconnectit.com/products/search-and-replace-for-wordpress-databases/

    Let us know how you went.

    Thanks

    September 8, 2015 at 8:33 pm #52499

    adyp
    Expired Member
    Post count: 496

    Thanks Paolo,

    I’ll have a look at this in the morning when I am a little fresher.

    September 9, 2015 at 5:25 pm #52618

    adyp
    Expired Member
    Post count: 496

    Well, it appears to have worked.

    The only disappointing thing (so far) is the grey warning triangle (with exclamation mark) in the url bar – clicking on it gives the warning “This website does not supply identity information” and “The connection to this website is not totally secure …” (to do with unencrypted images?) (in Firefox)

    In the wordpress back-end I get the grey padlock, which does verify the site and that the connection is secure.

    A bit perplexing – more time exploring this when I ought to be working on something else!

    I would be grateful for any pointers from others who have come across this issue.

    Thanks

    September 9, 2015 at 5:33 pm #52620

    adyp
    Expired Member
    Post count: 496

    … and now I have installed Chromium for testing and it’s icon (grey with yellow triangle), when clicked through to get information states:

    “Your connection to the site is encrypted, but Google Chrome has found something on the page that could be unwanted images or ads. We suggest you don’t enter private or personal information on this page

    Great!

    September 9, 2015 at 5:55 pm #52624

    Paolo
    Site Admin
    Post count: 31211

    That’s normally due to 1 or more http still being serve by the page. Could be a plugin or the theme.

    If you provide a link I’ll tell you more.

    Thanks

    September 9, 2015 at 5:57 pm #52625

    adyp
    Expired Member
    Post count: 496
    This reply has been marked as private.
    September 9, 2015 at 5:58 pm #52626

    adyp
    Expired Member
    Post count: 496

    … that should have been https:// of course!

    September 10, 2015 at 8:47 am #52656

    adyp
    Expired Member
    Post count: 496

    Can anyone recommend a tool or plugin to check what plugins/content might be causing this type of problem? I found one plugin that appeared to address this but it had not been updated in 2 years.
    Thanks

    September 10, 2015 at 9:25 am #52657

    adyp
    Expired Member
    Post count: 496

    FIXED!

    In case it helps out anyone else, here are details:

    I did a Control+Shift+K to get the console up (some sort of diagnostic tool) that showed that my site body background image (a.jpg) was being served http:// not https://

    Checking in GDF Options, body background image was in fact listed as ‘https://……’ – I deleted it and checked the front of site – warning triangle gone – so I reloaded the body background image again and checked front of site – warning triangle gone.

    Chuffed!

    September 10, 2015 at 5:30 pm #52698

    adyp
    Expired Member
    Post count: 496

    ah – unfixed 🙁

    Console is showing 2 red items:

    1. “This site makes use of a SHA-1 Certificate; it’s recommended you use certificates with signature algorithms that use hash functions stronger than SHA-1.” (I had this before but it didn’t seem to be significant when I sorted the background image problem – can’t believe I have been sold an SSL certificate that uses out-of-date security algorithms!)

    2. “Loading mixed (insecure) display content “http://google-maps-utility-library-v3.googlecode.com/svn/trunk/markerclusterer/images/m1.png” on a secure page” – this is new, showing up since I added more test listings that lead to the cluster marker showing – I’m not so sure how to fix this.

    Ideas gratefully received…

    September 11, 2015 at 8:47 am #52745

    adyp
    Expired Member
    Post count: 496

    …it’s issue 2 that I’d appreciate a pointer on – it would save me many hours (of potentially fruitless) research!

    anyone?

    September 11, 2015 at 2:53 pm #52810

    adyp
    Expired Member
    Post count: 496

    Hello – anyone out there? – am I invisible?

    September 11, 2015 at 5:13 pm #52848

    adyp
    Expired Member
    Post count: 496

    … apparently so …

    having looked a little into this it appears to me that the compromise to my SSL clean bill of health is caused by geodirectory marker cluster plugin – and indeed when it is deactivated the problem disappears.

    … so, off to see if there is a Marker Cluster bugs forum …

    September 11, 2015 at 8:53 pm #52883

    Paolo
    Site Admin
    Post count: 31211

    Hi Adyp,

    sorry for the late reply, I was travelling and nobody else picked this up, However please consider than normally we can guarantee a reply within 24hrs.

    Please provide admin credentials in a private reply and we will have a look.

    Thanks

  • Author
    Posts
Viewing 15 posts - 1 through 15 (of 21 total)

We have moved to a support ticketing system and our forums are now closed.

Open Support Ticket
20% Discount Offer
Hurry! Get your 20% discount before it expires. Get 20% Discount