SSL

Improved support for NGINX, CloudFront and CloudFlare, 2.5.0 imminent!

As the 2.5.0 release date is getting closer (no, no date, that keeps me flexible but it’s days, not weeks) tension peaks. Testing has been finished on NGINX, Apache, and on loadbalanced setups.

The 2.5.0 release will be a big improvement. As of this release, it is possible to enable internal WordPress 301 redirects, which will be a great help for non-apache users, NGINX, IIS, etc. When you activate the plugin, it will automatically decide if it needs to turn it on or not.

The mixed content fixer is now also fixing escaped URL’s: sometimes you see a URL like this in your websource: http:\/\/www.domain.com. Well, that’s what escaped links look like, and it well… escaped the mixed content fixer until now 😉

But not anymore!

Some extra possible .htaccess rewrite rules were added as well, which should greatly improve success rate!

And, I’ve improved the curl request that gets the test page. Previously, once in a while a bad SSL certificate still slipped through. Though this might still be possible, I think I’ve reduced it greatly!

So 2.5.0 is imminent!

If you want to contribute by doing a testrun yourself, I would appreciate it very much. You can find the 2.5.0 version on GitHub:

https://github.com/rlankhorst/really-simple-ssl/commit/51e6efed8928ea495a0883706ebe9272330cfc50

 

 

Related Articles

  • Really Simple SSL 2.3.8

    Some small but important tweaks were added to the latest release of 2.3.8. In previous versions, javascript was used as fallback when .htaccess redirects were not possible. A much better...
  • Really Simple SSL 2.2.16 released

    Some of you might have noticed, but the release of 2.2.13 didn’t go as smoothly as planned. During extensive testing and a beta period there didn’t come up anything, so...
  • Security headers in Really Simple SSL pro

    SSL is an additional layer of security on your site. In the current version of Really Simple SSL pro we already have added HSTS, and HSTS preload, which prevents your...
  • Certificate expiration check in Really Simple SSL pro

    There’s something strange with uptime robots: they don’t detect expired certificates. So even though you don’t get any messages that your site is down, it might be if your SSL...