SSL

Next step in Google’s push for an all SSL internet

Since this january, many of you may have received a notification from Google Search Console about non-secure pages where passwords or creditcard data are being submitted.

Beginning in January 2017, Chrome (version 56 and later) will mark pages that collect passwords or credit card details as “Not Secure” unless the pages are served over HTTPS.

The following URLs include input fields for passwords or credit card details that will trigger the new Chrome warning. Review these examples to see where these warnings will appear, and so you can take action to help protect users’ data. The list is not exhaustive.

The message you will receive by mail and or in your Search Console, will ready (depending on your language of course) something like:

Non secure collection of passwords will trigger warnings in Chrome 56 for http://www.domain.com.

This is quite frightening, but easy to solve:

  1. Get an SSL certificate with your hosting company
  2. Install Really Simple SSL (if you have a WordPress website, that is)

Google is pushing for more SSL websites. There is already the ranking benefit, but now more and more warnings are given out to users when a website is not secure. Also mixed content warnings seem to be costing ranking.

Related Articles

  • Really Simple SSL 2.3.8

    Some small but important tweaks were added to the latest release of 2.3.8. In previous versions, javascript was used as fallback when .htaccess redirects were not possible. A much better...
  • Improved support for NGINX, CloudFront and CloudFlare, 2.5.0 imminent!

    As the 2.5.0 release date is getting closer (no, no date, that keeps me flexible but it’s days, not weeks) tension peaks. Testing has been finished on NGINX, Apache, and...
  • 2.3.5 Released

    Versino 2.3.5 was released today. A 2.3.4 version was released earlier today, but contained a small bug: the javascript redirect was not added correctly anymore. As the javascript should be...
  • Security review of Really Simple SSL

    I recently was asked on the WordPress support forums if Really Simple SSL is securely built. I always thoroughly check the code for possible security issues, and secure all posts...