Archive for the ‘https’ Category

Content Security Policy: The Easy Way to Prevent Mixed Content

Posted on: No Comments
I recently learned about a browser feature where, if you provide a special HTTP header, it will automatically post to a URL with a report of any non-HTTPS content. This would be a great thing to do when transitioning a site to HTTPS, for example, to ro...

Switching Your Site to HTTPS on a Shoestring Budget

Posted on: No Comments
Google's Search Console team recently sent out an email to site owners with a warning that Google Chrome will take steps starting this October to identify and show warnings on non-secure sites that have form inputs. Here's the notice that landed in my...

Just Another HTTPS Nudge

Posted on: No Comments
I was strongly reminded about the scariness of non-secure websites the other day. I'm using Xfinity as an internet service provider, and they give you a device that is both a cable modem and a router. Here's a tiny bit of backstory. I use a VPN, and...

Quick Tip: LetsEncrypt “server” error fix on Ubuntu 16.04

Posted on: No Comments
I recently had to renew the HTTPS certificates for my server, and ran into trouble. The errors that the command sudo letsencrypt renew was spewing out were these: Processing /etc/letsencrypt/renewal/bitfalls.com.conf 2017-02-06 07:43:08,126:WARNING:...

Free SSL For Any WordPress Website

Posted on: No Comments
  If you have an e-commerce website, then SSL is mandatory for safely processing credit cards. But even if you aren’t processing payments, you should still seriously consider secure HTTP (or HTTPS), especially now that I’m going to show y...