Category: SSL & HTTPS

Can I deactivate Really Simple Security after activating SSL?

The below article refers to Really Simple SSL 4.0 and upwards. Versions prior to 4.0 will revert the site to http when deactivating the plugin within the plugins overview page (Plugins -> Installed Plugins), and remain on https when using the option on the Settings page instead. Really Simple SSL is built to be very lightweight: the majority of the files are not even loaded when a visitor requests the frontpage. If you have not yet enabled SSL in Really

Leon Wimmenhoeve June 28, 2017

Really Simple SSL Multisite set-up and tips

In this article, we will explain how to activate the plugin on Multisite WordPress environments. Really Simple SSL (Free) is fully compatible with Multisite WordPress. Note that using the Pro plugin on Multisite WordPress requires the dedicated Really Simple SSL Pro multisite plugin, included with all Agency plans. Setting up Really Simple SSL in a multisite environment Really Simple SSL can be installed by uploading and activating the .zip file in your WordPress installation, or in the case of the Free

Mark May 29, 2017

Hyperlinks to external urls getting replaced to https

There are two situations where a normal hyperlink to an external URL could get replaced to https The website domain is part of the external domain If for example, the external URL is http://domain.com.au, while the website URL is http://domain.com, this can happen. Really Simple SSL replaces all instances of the own website domain in the HTML to https. In this edge case, the external URL gets replaced as well: replace http://domain.com in http://domain.com.au to https, and the external link

Leon Wimmenhoeve April 17, 2017

Redirect to https not working

After enabling Really Simple SSL and clicking the “Activate SSL” button, a 301 PHP redirect to https:// will be activated by default. If you notice that your site can still be reached over http://, it is possible that the redirect does not work because the site is still cached. If you’re using Apache or LiteSpeed, the recommended redirect method is the 301 .htaccess redirect. But as not every server uses Apache/LiteSpeed, and not all servers support the detected .htaccess redirect

Leon Wimmenhoeve April 3, 2017

Certificate expiration check in Really Simple SSL pro

There’s something strange with uptime robots: they don’t detect expired certificates. So, even though you don’t get any messages that your site is down, it could still be that your SSL certificate has expired… and browsers will block your site, or present “insecure” warnings to users. This happens because technically, your site is not down. It’s just that there’s no browser that will display your site without resulting in such warnings. If you generate your SSL certificate with the Let’s

Leon Wimmenhoeve March 11, 2017

Recent

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 Not Found errors detected on your homepage

Protecting site visitors with Security Headers

Hardening your website’s security

Why WordPress is (in)secure

Staying ahead of vulnerabilities

Our journey towards Really Simple Security

Categories

Most popular