Really Simple SSL Pro 2.0.4

Improved mixed content scan

Today Really Simple SSL pro 2.0.4 has been released. The mixed content scan in Really Simple SSL pro now has an improved function detect mixed content in widgets.

Finding the mixed content is easy, but where is it located?

By looking in your console, it’s often easy to find the URL that is causing the mixed content. The problem is, where is this URL used? That is why Really Simple SSL pro first searches for CSS and JS files with http URL’s, and scans your entire site for external URL’s. Each of those URL’s is then verified: can it load over https or not?

If you have used hot linked images, remote JS or CSS scripts, widgets, etc, these might break on SSL. Really Simple SSL pro will find these, and searches your database AND files (search and replace plugins, while often convenient, won’t search your files). The results are shown in sections: posts, CSS/JS files, PHP files, or other database tables.  With this setup, you can easily find the URL that is causing the issue. Hot linked images can be automatically downloaded and inserted into posts, css or js files.

Search for hot linked images in widgets

There was one thing that we still had to do in the pro plugin though: hot linked images were found in the scan, but not traced back to widgets: the warning just mentioned the URL in general, which is not very helpful: how can you fix it if you don’t know where it’s used? As widgets can often contain hot linked images (http URL’s in widgets will be fixed automatically by the plugin), we have now added a separate widget section in the scan. WordPress doesn’t have the ability to link directly to a widget, but the scan lists the name of the widget and the widget area, so it should be easy to find now.

Coming soon is the Fix button for widgets. For now, you can go to the widget, and change the image to an image on your own system. More information on how the plugin searches for mixed content and hot linked images on your site? See the article about mixed content


Related Articles

  • Really Simple SSL 2.3.8

    Some small but important tweaks were added to the latest release of 2.3.8. In previous versions, javascript was used as fallback when .htaccess redirects were not possible. A much better...
  • New features for free and pro version coming up

    Both Really Simple SSL and Really Simple SSL have a new release coming up. In 2.4, the mixed content fixer has been rebuilt. Also the mixed content fixer detection, which...
  • Really Simple SSL entered the hot 100

    This morning I saw several Twitter messages, mentioning that Really Simple SSL is now included in the hot 100 from godaddy. This sounds pretty cool, though to be honest...
  • Security review of Really Simple SSL

    I recently was asked on the WordPress support forums if Really Simple SSL is securely built. I always thoroughly check the code for possible security issues, and secure all posts...