Today, I went into the website to do regular maintenance, but my browser blocked me as “insecure site” – even though WP Encryption said the certificate was valid until September.
So I generated a fresh one, and installed that. The certificate generates OK, and installs OK. I checked within cPanel at SSL/TLS and the green locks were correctly showing at both nezfit.com.au and www.nezfit.com.au.
Then, about an hour later I wanted to do some more work on the site, but I got another error message from Chrome telling me the site is insecure.
I went back into cPanel and the green locks were NOT showing on nezfit.com.au nor www.nezfit.com.au anymore. They were definitely green before, but now they’re red, and all the other things in there that were red are now showing as green instead – cpanel.nezfit.com.au, cpcalendars.nezfit.com.au, cpcontacts.nezfit.com.au, ipv6.nezfit.com.au, mail.nezfit.com, mail.nezfit.com.au, etc.
What’s going on, why does it swap the green for the red, and what can I do to stop this happening again?
]]>
]]>Is your website showing insecure padlock even though you have Certificate(valid)?. Then this thread is definitely for you, please follow the below instructions:
1. Login to your wp-admin.
2. Please make sure you are updated to latest version of WP Encryption plugin.
3. Go to Advanced Insecure Content Scanner page of WP Encryption and click on Start the Scan button
4. Scanner will return back with the list of mixed content issues on all different posts and pages on your site.
5. Find the insecure link in each of the said resources / assets and change them to https:// instead of https://
5a. If its an image from media library, re-uploading the file would solve the issue and change its link to https:// on its own.
Once after all the issues are fixed, please re-run the scanner and make sure no more issues exists. Then clear your browser cache completely and the website should start showing secure green padlock.
Tip: Enabling the mixed content fixer feature via SSL Health page of WP Encryption would solve mixed content issues automatically. In rare cases, you could still find some https:// links in scanner results which couldn’t be changed by the automatic fixer. Advanced insecure content scanner helps you in finding such insecure links so you could find and fix them easily.
]]>This happens every few days or so, sometimes being resolved by clearing caches. But then it recurs, again and again. It is the only non-secure resource.
I have tried disconnecting and reconnecting Jetpack.
I have tried deactivating and uninstalling, as per Jetpack instructions.
These actions seem to have had no effect.
We have both website and shop set to https, redirects from non-secure to secure in the htaccess and a caching plugin that is supposed to force SSL and ensure external content is also SSL.
Not sure what else to do, but this is driving me nuts!
Any help appreciated.
Even though the initial HTML page is loaded over a secure HTTPS connection, some resources like images, stylesheets or scripts are being accessed over an insecure HTTP connection. Usage of insecure resources is restricted to strengthen the security of your entire site.
To resolve this issue load all resources over a secure HTTPS connection.
5 resources
Name Restriction Status
120555343_1194969734208555_5121136905229575920_nlow.jpg warned
120046061_3150885601707264_5579944750482277729_nlow.jpg warned
119109542_3361774710566483_487771784010050441_nlow.jpg warned
118656551_3182546551863150_2500748009586139180_nlow.jpg warned
118656551_3182546551863150_2500748009586139180_nfull.jpg warned
These five images are being pulled from Instagram via the plugin. I have checked both site addresses in the ‘General’ tab of Settings for the site and both are using https.
Any help would be appreciated.
Thanks, Maarten
]]>I’ve installed & configured the plugin, but the home page still says it is insecure, even though it is loaded over https.
Help appreciated.
Steve
Thanks