Category: SSL & HTTPS
Avoid landing page redirects, redirecting www to non-www and vice versa
Google encourages to “avoid landing page redirects”. But in case of SSL, this recommendation conflicts with SSL best practices. At the same time, 1 or 2 redirects, as long as they are 301 permanent, are not harmful at all. Let me explain. Why is there a double redirect in my site? WordPress internally redirects your site to the primary domain, which is entered in settings/general. For example, when your site url is http://www.domain.com, and you type in http://domain.com, WordPress redirects to
How to check if the Mixed content fixer is active
Detect mixed content with an extensive scan, with easy fix button!
Does SSL improve my security?
The short answer is Yes. SSL significantly enhances security by encrypting data, and ensures that data sent between your browser and the server is unaltered. If you need visitors to send private information over the web to your site, or vice versa, it is very important to encrypt all your data with SSL. But I would not say it is the very first thing you should do. To prevent your site from getting hacked, start with the following: Do not
Redirect rules in Nginx
Use the following to redirect to https on nginx. server { listen 80; server_name my-domain.com; return 301 https://$server_name$request_uri; }
What does “Activate SSL” in the plugin actually do?
To fully enable HTTPS/SSL on your WordPress site, you only have to click Activate SSL in this plugin, and in most cases your website will immediately work over SSL. So, what actually happened in the background? When clicking Activate SSL in the Really Simple Security (formerly Really Simple SSL) dashboard, the plugin: Checks for SSL before activating Selects the appropriate .htaccess redirect rule based on your server configuration If necessary, it adds a load balancer fix to wp-config.php. If the WordPress