HSTS, or HTTP Strict Transport security is an option in Really Simple SSL pro, and I guess most people just activate it, just because you can. But it’s good to know why you need it. When you have an SSL certificate on your domain, anyone can still use your site over http. The simplest solution is …
There’s something strange with uptime robots: they don’t detect expired certificates. So even though you don’t get any messages that your site is down, it might be if your SSL certificate has expired… All browsers will block your site, or give scary warnings to users. This happens because technically, your site is not down. It’s …
Today, the Really Simple Social likes recovery plugin has added support for the recovery of Facebook likes with the JetPack sharing tool. If you are using JetPack with it’s in built sharing tool and you have lost your Facebook likes because you have switched your domain to https, you can now recover the likes by …
As the 2.5.0 release date is getting closer (no, no date, that keeps me flexible but it’s days, not weeks) tension peaks. Testing has been finished on NGINX, Apache, and on loadbalanced setups. The 2.5.0 release will be a big improvement. As of this release, it is possible to enable internal WordPress 301 redirects, which will …
Since this january, many of you may have received a notification from Google Search Console about non-secure pages where passwords or creditcard data are being submitted. Beginning in January 2017, Chrome (version 56 and later) will mark pages that collect passwords or credit card details as “Not Secure” unless the pages are served over HTTPS. …