News:

SMF 2.1.4 has been released! Take it for a spin! Read more.

Main Menu

Converting to https, step-by-step...

Started by shawnb61, July 08, 2017, 03:01:04 AM

Previous topic - Next topic

Arantor


diegolyanky

SMF ... SimpleMachines ... Simple, but complete if you want it ;)

Veee

Thank you so much for this! I finally had the time to do this to my forum and everything is working just fine. :D

MensaMod

Many thanks to all for the OP and subsequent postings. 
The transition went smoothly and seems to be successful. 
Couldn't have done it without y'all.

simplebeer

I followed every step but cant get it right, if i rightclick image or smiley i see a secure page, but the main isn't secure.

www.lasforum.nl

Is it possible the problem is in the footer? The link to SMF, Simple Audio Video Embedder and XHTML ?
In which php can i find this?
Sorry for my poor English, but i think it's probably better then your Dutch :)

LiroyvH

Quote from: simplebeer on October 26, 2018, 04:54:07 AM
I followed every step but cant get it right, if i rightclick image or smiley i see a secure page, but the main isn't secure.

www.lasforum.nl

Is it possible the problem is in the footer? The link to SMF, Simple Audio Video Embedder and XHTML ?
In which php can i find this?

https://www.whynopadlock.com/results/43865fe0-8763-44e1-b4dc-67a7005bd49b
Quote
An image with an insecure url of "http://www.lasforum.nl/afbeeldingenvast/lasforumbanner2.png" was loaded on line: 69 of https://www.lasforum.nl/.
((U + C + I)x(10 − S)) / 20xAx1 / (1 − sin(F / 10))
President/CEO of Simple Machines - Server Manager
Please do not PM for support - anything else is usually OK.

simplebeer

Thanks, but if I right click on it it looks secure?

https://www.lasforum.nl/afbeeldingenvast/lasforumbanner2.png


EDIT: it works! I change the logo URL on theme settings

Thanks so much @CoreISP!
Sorry for my poor English, but i think it's probably better then your Dutch :)

Lostmykey

Hi, Happy New Year! Question about Image Proxy and https...

We are running 2.0.15 -Exodus Theme - and converted successfully last week to https.

Member avatars with links are causing some mixed content warnings in threads. They are soft warnings but I'd like to get rid of them.

Will turning on Image Proxy fix the issues with http: Urls for member image avatars? If so, does it work immediately?

Would it be better to just globally turn off urls for member avatars and force them to upload images or use the forums avatars?






vbgamer45

Community Suite for SMF - Take your forum to the next level built for SMF, Gallery,Store,Classifieds,Downloads,more!

SMFHacks.com -  Paid Modifications for SMF

Mods:
EzPortal - Portal System for SMF
SMF Gallery Pro
SMF Store SMF Classifieds Ad Seller Pro

Lostmykey

Quote from: vbgamer45 on January 01, 2019, 04:36:26 PM
Yes it will help give it a try.

Thanks, that did the trick. We lost all avatars on URLs but it's no big loss there - and now we've got the green padlock on all threads that I've spot checked.

drewactual

do this, as well, if you haven't already.  http://www.simplemachines.org/community/index.php?topic=197938.0 ...... can also assist with the SSL issue..

Raths Rants

THANK YOU!

I just recently switched host providers and added SSL. My Wordpress site converted just fine but, my SMF site needed some love.

After messing with it a day or so I took a DEEP breath and put it down.

I decided to wake up before the family this morning and search for a solution.

After a bit of searching I came across your post. I put my reading cap on and followed the instructions step by step.

Worked like a charm. Site is back up and running in less than 30 minutes!
The DDC Network
a lot of hard work goes into easy

luuuciano

Someone uses google ads on a smf forum?

Because for some odd reason the google ads script is calling the non ssl version, instead the https version... it is odd because all has changed in the smf config to work ok with https....
I have no idea what is going on..... any idea?

This is the error Firefox console shows me:
"Blocked loading mixed active content "http://pagead2.googlesyndication.com/pagead/show_ads.js""

And chrome says:
"Mixed Content: The page at 'https://cbabikes.com.ar/el-bar/compra-bicicletas-en-uruguay-2015-12628.0.html'; was loaded over HTTPS, but requested an insecure script 'http://pagead2.googlesyndication.com/pagead/show_ads.js';. This request has been blocked; the content must be served over HTTPS."

So... it is not showing any ads at all :-\

here an example post https://cbabikes.com.ar/el-bar/compra-bicicletas-en-uruguay-2015-12628.0.html

I have used several ssl checker online... but only says that I have to contact google to fix it (??)

Maybe it is some google ads setup? do I have to change all my codes/google ads setup to use https ?

?
No me agradan los foros que no te dejan borrar TU PROPIO usuario, como por ejemplo smfsimple.com.
E incluso te mandan emails no solicitados, de los cuales, quizá, no puedas escapar porque NO te dejan posibilidad a deshabilitarlos (a menos que NO te tengan en su lista negra).

vbgamer45

You have to get the newest google adsense block code. You are using the old format.
Community Suite for SMF - Take your forum to the next level built for SMF, Gallery,Store,Classifieds,Downloads,more!

SMFHacks.com -  Paid Modifications for SMF

Mods:
EzPortal - Portal System for SMF
SMF Gallery Pro
SMF Store SMF Classifieds Ad Seller Pro

luuuciano

Quote from: vbgamer45 on January 26, 2019, 08:26:09 PM
You have to get the newest google adsense block code. You are using the old format.

Mmmmm, I have checked and it seems to be the new one..... I have been reading about this, and there is a lot of people talking about a huge drop on ads and saying that there is no too much SSL ads, so google adsense tries to serve regular ads... but it is blocked... so, only a few ssl ads are served ¿?
No me agradan los foros que no te dejan borrar TU PROPIO usuario, como por ejemplo smfsimple.com.
E incluso te mandan emails no solicitados, de los cuales, quizá, no puedas escapar porque NO te dejan posibilidad a deshabilitarlos (a menos que NO te tengan en su lista negra).

vbgamer45

That's not really the case any more since the entire web is mostly on SSL.
Community Suite for SMF - Take your forum to the next level built for SMF, Gallery,Store,Classifieds,Downloads,more!

SMFHacks.com -  Paid Modifications for SMF

Mods:
EzPortal - Portal System for SMF
SMF Gallery Pro
SMF Store SMF Classifieds Ad Seller Pro

mcpheex3

I need help. I may be beyond help, in which case I need the names of consultants I can hire.  ;D

I freely admit I barely know what I am doing when it comes to admin'ing a forum. I can't get this SSL thing straightened out.

1. I think the .htaccess file should go in the theflourishforum.com/forum directory because that is where the settings file is? Is that correct? Or should it go in theflourishforum.com?

2. So basic but ... how do I create the .htaccess file? When I try to save it in notepad or wordpad, it forces a .rtf or .txt extension which can't be deleted.

3. Does it matter the site goes through cloudflare? I can't even remember what that means except I set it up when we were using the chat feature and I was blowing up my server. I have since deleted chat.

4. When I test it on whynopadlock, the SSL connection passes, valid certificate, installed correctly. But I get, "Your webserver is forcing the use of SSL." Is that because of cloudfare? Should I get rid of cloudflare?

5. Protocols, I get this: You currently have TLSv1 enabled.
This version of TLS is being phased out. This warning won't break your padlock, however if you run an eCommerce site, PCI requirements state that TLSv1 must be disabled by June 30, 2018. Say what?

6. I then get 5 hard failures, 8 soft failures, and 2 form failures.

I have been trying to address this for months but every time I try, I get so overwhelmed, I give up. Also, I have a huge FAQ on the main URL which directs to various topics in the forum. This is an integral part of my site and none of the links will work because of this.

Any help is very much appreciated.

drewactual

Quote from: mcpheex3 on January 29, 2019, 07:09:36 PM
I need help. I may be beyond help, in which case I need the names of consultants I can hire.  ;D

I freely admit I barely know what I am doing when it comes to admin'ing a forum. I can't get this SSL thing straightened out.

1. I think the .htaccess file should go in the theflourishforum.com/forum directory because that is where the settings file is? Is that correct? Or should it go in theflourishforum.com?
yes- it should go in the directory with your forum, but MAKE SURE your server looks however layers deep for htaccess files- some can be configured not to.. so... ask your host

2. So basic but ... how do I create the .htaccess file? When I try to save it in notepad or wordpad, it forces a .rtf or .txt extension which can't be deleted.
write it in notepad and upload it to your server, THEN change the name to .htaccess from htacces.txt

3. Does it matter the site goes through cloudflare? I can't even remember what that means except I set it up when we were using the chat feature and I was blowing up my server. I have since deleted chat.
doesn't matter

4. When I test it on whynopadlock, the SSL connection passes, valid certificate, installed correctly. But I get, "Your webserver is forcing the use of SSL." Is that because of cloudfare? Should I get rid of cloudflare?
something in the configuration, either an htaccess or http.d file above your layer is likely forcing.... not a bad thing, but ask your host

5. Protocols, I get this: You currently have TLSv1 enabled.
This version of TLS is being phased out. This warning won't break your padlock, however if you run an eCommerce site, PCI requirements state that TLSv1 must be disabled by June 30, 2018. Say what?
tell your host to update you to the better protocols... if you need a list, I can get it for you

6. I then get 5 hard failures, 8 soft failures, and 2 form failures.
what kind of failures and using what kind of evaluation?
I have been trying to address this for months but every time I try, I get so overwhelmed, I give up. Also, I have a huge FAQ on the main URL which directs to various topics in the forum. This is an integral part of my site and none of the links will work because of this.

Any help is very much appreciated.

for your SSL Cipher Suite, you'll be best served with the following configuration (pass to your host) :

ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA256

your SSL protocols are best configured with (pass to your host) :

All -SSLv2 -SSLv3

drewactual

by the way @mcpheex3, let's take your problem to its own thread where folks can better serve you. 

mcpheex3

Thank you very much @drewactual! I am going to try the information you provided and if I still can't get it to work, will start a new thread. Your response is very much appreciated!

Advertisement: