How to Secure your Blog/Wordpress Website?
HTTPS appropriation has surged in the course of recent years, for the most part on account of the accessibility of free SSL/TLS certifications. Browser vendors have also been encouraging sites to switch to HTTPS, and Google said earlier this year that Chrome would eventually mark all HTTP-only sites as ‘Not Secure.’
Scroll Down for Review Video (Hindi/Urdu)
What is HTTPS ‘Secure’ Certification?’
The Hypertext Transfer Protocol (HTTP) is an application protocol for distributed, collaborative, and hypermedia information systems. HTTP is the foundation of data communication for the World Wide Web. Hypertext is structured text that uses logical links (hyperlinks) between nodes containing text.
HTTPS ensures the connection between you and the site you’re visiting is secure, meaning the content cannot be tampered with by your ISP or government. Beyond that, most newer browser features (like Service Workers, which allow sites to send notifications) are blocked on insecure connections.
Chrome will Display all HTTP Sites as ‘Not Secure’
Chrome 68 is expected to be launched on July 24, 2018, and it’s the main release that will show a ‘Not secure’ message in the address bar on HTTP pages. Chrome as of now shows the message on HTTP destinations with information section fields, however beginning tomorrow, all non-secure pages will be disgraced (a sample has been shown below).
The change is critical in light of the fact that it will add additional weight for locales to help HTTPS (in the event that they haven’t as of now)
The message will also bring attention to sites that have not configured HTTPS correctly. For example, CloudFlare says that around 157,000 major sites don’t automatically redirect HTTP pages to the HTTPS version.
How to Secure your Blog / WordPress Website?
There are numerous methods to do so. By doing ‘so, I mean from HTTP to HTTPS. The primary is the browse vendors or simply the domain and hosting providers. A couple of weeks ago, on one of my websites, I got a mail from my Service Provider and they let me know of this in advance and ultimately helped me to go through this problem. Well, these are the easiest methods to do so for both a blogspot site and WordPress or other blogs/websites.
For WordPress Blogs/Websites – Using SSL Certificate Plugin for WordPress Websites/Blogs.
Well, if you are using a WordPress site, then you have a bunch of plugins. Well, the one I recommend is Really Simple SSL (its usage is as simple as its name is). Just install it and activate it. You have some options to tweak with which you can do by going into its settings.
Really Simple SSL automatically detects your settings and configures your website to run over HTTPS. The entire site will move to SSL.
What Really Simple SSL Plugin Actually does?
- The plugin handles most issues that WordPress has with SSL, like when you’re behind a reverse proxy/load balancer, or when no headers are passed which WordPress can use to detect SSL.
- All incoming requests are redirected to https. Default with an internal WordPress redirect, but you can also enable a .htaccess redirect.
- The site URL and home URL are changed to https.
- Your insecure content is fixed by replacing all HTTP:// URLs with HTTPS://, except hyperlinks to other domains. Dynamically, so no database changes are made (except for the siteurl and homeurl).
For Blogger (Blogspot.com) Blogs
Blogspot is a secure platform for bloggers (since it has been developed by Google itself). Yet, there are some setting to do to make sure your site is Secure. If you don’t employ the proper settings, your blog will look like this one:
While, if it is a secure one, it will look like this one:
Well, this little change takes a very simple setting to. All you need to do it to go to your blogger -> settings -> basic -> here you see HTTPS keep https redirect YES. Keep in mind If HTTPS Redirect is turned on, Visitors to your blog will always go to https.
- Sources include: Android Police