SSL Certificate and RavenNuke ?

Regular Joined: May 06, 2013 Posts: 50

Hello all, I would like to add a ssl certificate to my ravennuke site but was wondering what if anything I would have to change to allow this ?
Thanks for any feedback
mrix
p.s would love to have my old forum account back if possible. Sad

Site Admin Joined: Aug 22, 2007 Posts: 1772

To use a ssl certificate has nothing to do with php scripts! That is based in the webserver configs! Wink

Posted: Mon Aug 25, 2014 12:59 pm

Hello neralex, sometimes with certian software I have used, once the SSL has been setup on the server the website software needs a few changes to it works correctly.
I am wondering if ravennuke has any issues running through SSL etc ?
Thanks
mrix

Posted: Mon Aug 25, 2014 1:08 pm

You're wrong, a certificate you can only set in the configuration of the web server! A CMS can't handle a SSL certificate. You mean a https connection?

Posted: Mon Aug 25, 2014 1:15 pm

Quote:

You're wrong, a certificate you can only set in the configuration of the web server!

Yes I am aware to set up the SSL it needs to be through the web server, this is about to be done and waiting for my host to get that side sorted.

I have an auction site and have had issues where some of the images are not https connection and other issues, it was not just a case of installing SSL and everything went smoothly etc.

My question is how will connections from the ssl run on ravennuke, has anyone had any issues? will some pages not be secure ? will it only work from the main domain and no sub pages?

Just curious of any issues

Cheers
mrix

Posted: Mon Aug 25, 2014 1:24 pm

Its a question about your added domains and/or subdomains where you have your certificate registered. I'm using a free SSL certificate. I have added this certificate for my facebook-apps but it works also with the page. Try a look:
[ Only registered users can see links on this board! Get registered or login! ]

The issues with image-paths can only be placed in your own code-changes. Make sure that you are using every time relative links without to type the url with domain.tld/folder/image.jpg - better is folder/image.jpg and let the webserver work for you. Wink

Posted: Mon Aug 25, 2014 1:31 pm

Hi, I notice when you search Google and enter it it shows the padlock on the front page, ie when you find your site through the search engines it ends up on [ Only registered users can see links on this board! Get registered or login! ] and not [ Only registered users can see links on this board! Get registered or login! ] you have to type [ Only registered users can see links on this board! Get registered or login! ] etc.
Is there a way to drop right into the ssl certificate without manually having to type it then click etc ?

I have been reading recently that Google is about to give sites with a SSL certificate a slightly higher ranking with sites that do not hence me getting an SSL for my ravennuke site.

Thanks for all the feedback
mrix

Posted: Mon Aug 25, 2014 1:36 pm

For sure because i'm using the page only with http and i'm using https only for some external-scripts like facebook-apps. It was not my goal to get a https result on google. Your question was if it will work and the answer is YES - exaclty for this question was my example! Smile

If you will start a page with a forced https connection then you should start it with this connection type and then you will find only the https results. Wink

But this was exaclty my question what do you want in the previous posts! If you want force a https-conntection then it should be not the problem with some code changes. For that you need only a simple header refresh before the header is loaded or you are using a possible way with a apache rule in your htaccess file.
[ Only registered users can see links on this board! Get registered or login! ]

The one thing has nothing to do with the another one. Make sure what do you want, before you are starting a website and then you will get your wanted results. But you can't delete the stored search results! Wink

Posted: Mon Aug 25, 2014 4:33 pm

Hello neralex, thanks for your replies, I have gone ahead with the install and have forced the [ Only registered users can see links on this board! Get registered or login! ] url but it does not show as a green padlock in the browser but an orange one stating there are resources that are not secure, it also stops showing my Google ads so I guess they are the issue ?
Is there some sort of code to add to google ads which allows them to be shown without effecting the sites security?

Here is the url [ Only registered users can see links on this board! Get registered or login! ]

Thanks
mrix

Posted: Tue Aug 26, 2014 2:17 am

mrixnewaccount wrote:

but it does not show as a green padlock in the browser but an orange one stating there are resources that are not secure

Thar error returns if you have some external-scripts loaded with the full url like http and not with https. So try to find it the places where these scripts are added in your website and try to change it also to https. But the most 3rd party providers have also https certificates. Maybe is it simply the google ads implementation.

example:

html Code:

<link rel="StyleSheet" href="http://domain.tld/style/style.css" type="text/css" />


<script type="text/javascript" src="http://domain.tld/folder/file.js"></script>

try change it to:

html Code:

<link rel="StyleSheet" href="https://domain.tld/style/style.css" type="text/css" />


<script type="text/javascript" src="https://domain.tld/folder/file.js"></script>

BTW if i'm visiting your website then i can see the google ads - with and without https connection.

Posted: Tue Aug 26, 2014 2:21 am

Hi neralex, thanks, I decided to check IE and all worked fine my end so it must be a google chrome issue, I decided to read around the net and come of with something useful if anyone is in the same boat.
Basically Google Adsense has made some changes to helps this situation where you can now remove this section from your Google Adsense code.

http://pagead2.googlesyndication.com/pagead/show_ads.js

So now Adsense makes it possible to simply remove the http: Very Happy

I see what you mean about the some of the other links on that page, some links are external and just [ Only registered users can see links on this board! Get registered or login! ] I will need to troll through all of them and check.
Thanks
mrix

Posted: Tue Aug 26, 2014 7:53 am

Hi mrixnewaccount

I took a look at your site and your theme is pretty old and not validate it. Lots of errors. I think you can start fixing those things. Sorry I go in another direction but I hate to see a NON-Validated Theme working on Ravennuke which has all default themes 100% validated.

Examples of your errors

line 61 column 89 - Warning: discarding unexpected </a>
line 115 column 24 - Warning: <img> dropping value "Home" for repeated attribute "alt"
line 146 column 19 - Warning: <img> attribute "height" has invalid value "56px"

There are more errors.

Shocked

Posted: Tue Aug 26, 2014 10:11 am

@hicux ...

youtu.be/BNsrK6P9QvI

Please stop your offtopic postings. If you must leave everytime a comment if you visited a website from a user, then send him a PM.

Posted: Tue Sep 09, 2014 9:15 am

Hello all, getting back to this topic, is there a possibility to make just the front page ssl along with the login page etc ? at the moment if I check my front page through ssl all is fine but after if you load other pages while still using the [ Only registered users can see links on this board! Get registered or login! ] I get security issues, I can understand why this is and likely down to various reasons like scripts and urls with just http etc.
Cheers all
mrix

Posted: Tue Sep 09, 2014 11:17 am

You can't split it because the cookies are stored separately for each connection and you need the cookies for all user-functions. So the simple answer is: no!