? security concern on new website

afink01 · 2019-01-02 04:40:29

Ben/Matt:

At long last, I have just put up my newly designed Backlight 2 website. I cannot begin to emphasize how helpful Rod was with all of the issues that I encountered....superb support!

After posting the site, I had to interface with Bluehost for a minor issue. They suggested that I run a security check on the website which generated an issue which is of unclear significance to me. Can you let me know if I need to address this, and if so, how?

Thanks

Aaron

Security Message

Matthew · 2019-01-02 06:55:40

Without a link to your site, I can only guess. But from the looks of the error, I would image this is the sort of thing you might receive if attempting to load an image using an HTTP address on an HTTPS website.

Daniel Leu · 2019-01-02 10:08:23

Please check that the site url starts with https:// instead of http://.

afink01 · 2019-01-02 11:16:19

That undoubtedly explains the issue. Does an HTTPS login decrease traffic to the site?

afink01 · 2019-01-02 11:32:21

My current website URL is HTTP; can I just change it to HTTPS for better security or do I need to add additional code? Thanks

Aaron

Daniel Leu · 2019-01-02 22:56:33

afink01 wrote:

My current website URL is HTTP; can I just change it to HTTPS for better security or do I need to add additional code? Thanks
Aaron

Your page is already setup for https. You have the certificate and all. You just need to tell Backlight that your site's URL starts with https (Backlight > Admin > Settings).

But I would suggest to add a global redirect from http to https to your /.htaccess file: http://community.theturninggate.net/vie … 684#p55684

afink01 · 2019-01-03 01:27:01

Got it!! Thanks

afink01 · 2019-01-03 02:00:35

Daniel: All setup now. Site appears secure and redirect works. My only other question relates to my planned integration of "Cart" down the road. Whynopadlock indicates that my site is using an outdated version of TLS. Would I need to upgrade the TLS before implementing Cart?

Thanks again

Aaron

Daniel Leu · 2019-01-04 06:34:07

afink01 wrote:

Daniel: All setup now. Site appears secure and redirect works.

afink01 wrote:

My only other question relates to my planned integration of "Cart" down the road. Whynopadlock indicates that my site is using an outdated version of TLS. Would I need to upgrade the TLS before implementing Cart?

I don't know which version of TLS is required for the Cart to work properly. That would be a question for Ben.

Ben · 2019-01-04 09:46:19

The Cart itself doesn't depend on a level of encryption. I suggest though that you take the necessary steps to remove support for older versions of TLS.
TLS versions 1.0 and 1.1 are not secure.

Community @ The Turning Gate

#1 2019-01-02 04:40:29

? security concern on new website

#2 2019-01-02 06:55:40

Re: ? security concern on new website

#3 2019-01-02 10:08:23

Re: ? security concern on new website

#4 2019-01-02 11:16:19

Re: ? security concern on new website

#5 2019-01-02 11:32:21

Re: ? security concern on new website

#6 2019-01-02 22:56:33

Re: ? security concern on new website

#7 2019-01-03 01:27:01

Re: ? security concern on new website

#8 2019-01-03 02:00:35

Re: ? security concern on new website

#9 2019-01-04 06:34:07

Re: ? security concern on new website

#10 2019-01-04 09:46:19

Re: ? security concern on new website

Board footer