Author: Mark

ERR_SSL_UNRECOGNIZED_NAME_ALERT

err_ssl_unrecognized_name_alert This error means that the name on the certificate is not recognized and is usually caused by a SSL configuration error. The first thing to do is to check for any errors in your certificate using the Qualys SSL Labs scan. If there are any issues with your certificate, the scan will let you know. Do you see any error messages? Then it’s likely that the error is related to your certificate configuration, contact your hosting or certificate provider

Mark December 21, 2017

err_SSL_VERSION_OR_CIPHER_MISMATCH

You might encounter an ERR_SSL_VERSION_OR_CIPHER_MISMATCH error when visiting your website over HTTPS/SSL. This error is also known as SSL_ERROR_NO_CYPHER_OVERLAP in Mozilla Firefox. This error means that the server and client (browser) are unable to establish a secure connection between them. To establish a secure connection between the server and client, they need to have a cipher in common to understand each-others messages. If the ciphers don’t match, the server and client can’t communicate and it results in this error message.

Mark December 21, 2017

Inserting HSTS header using PHP

HSTS Header insertion Really Simple SSL Pro has the ability to set the HSTS header for your website. From version 6 and up this is done in PHP so there is no need to edit server config files like htaccess or nginx.conf anymore

Mark November 24, 2017

Locating mixed content in widgets

Sometimes the scan finds mixed content in widgets. If you see this message, it’s likely that there is a link to an image in one of your widgets that isn’t available over https://. The scan helps you locate the widget in which the mixed content is found. In the screenshot below you can see a result from the scan: First, the file which cannot load over https:// is shown. The scan details two things: the widget area in which the

Mark November 23, 2017

What are Secure Cookies?

HTTP cookies are small packets of data stored in your browser. This data may contain sensitive data like passwords or user information and is therefore vulnerable for attacks. To limit vulnerability you can ‘secure’ your cookies by adding specific attributes to the set cookies, making it harder to manipulate by outsiders. Really Simple SSL uses the HttpOnly, secure and use_only_cookies parameters to make cookies more secure. Since Really Simple SSL helps you in securing your website by switching your site to

Mark September 22, 2017

Recent

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 Not Found errors detected on your homepage

Protecting site visitors with Security Headers

Hardening your website’s security

Why WordPress is (in)secure

Staying ahead of vulnerabilities

Our journey towards Really Simple Security

Categories

Most popular