Author Topic: HTTPS Website Showing Gold Padlock in URL  (Read 6930 times)

Offline MMadden

  • Newbie
  • *
  • Posts: 8
Re: HTTPS Website Showing Gold Padlock in URL
« Reply #15 on: April 03, 2015, 03:02:31 PM »
See, you may as well be speaking Greek to me, as far add I can understand. Not to say I can't our won't learn it, but it's going to take me some time!

I'm now in the process of going through each and every blog post I've put up over the last six months, replacing the images. Some, I've discovered, were lost through the migration, I assume, but I can replace them. All my "regular pages" are now showing green!

Offline JoWa

  • Humanist
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 6741
  • I believe in doubt.
    • Evolutionary history of life
Re: HTTPS Website Showing Gold Padlock in URL
« Reply #16 on: April 03, 2015, 03:22:50 PM »
It's nice from you JoWa to share these.

In apache, how would you recommend to do that?
SSLCipherSuite ??:??:??:??
SSLHonorCipherOrder on
Mozilla has a useful wiki-page with three compatibility-levels: https://wiki.mozilla.org/Security/Server_Side_TLS#Recommended_configurations
Avoid “Old backward compatibility”.
« Last Edit: April 04, 2015, 01:22:43 AM by JoWa »
Ubuntu | Firefox | HTTPS Only Mode | Privacy Badger
Forum Policy | Comodo Product Help

Offline JoWa

  • Humanist
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 6741
  • I believe in doubt.
    • Evolutionary history of life
Re: HTTPS Website Showing Gold Padlock in URL
« Reply #17 on: April 04, 2015, 01:21:39 AM »
See, you may as well be speaking Greek to me, as far add I can understand. Not to say I can't our won't learn it, but it's going to take me some time!
Yes, a list of cipher suites may look like a pile of random nonsense. A cipher suite consists of several parts. Here is a simple explanation:
Quote from: Adam Langley
Cipher suites are written like this: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, which breaks down into the following parts:

ECDHE: the key agreement mechanism.
RSA: the authentication mechanism.
AES_128_CBC: the cipher.
SHA: the message authentication primitive.
http://googleonlinesecurity.blogspot.se/2013/11/a-roster-of-tls-cipher-suites-weaknesses.html
Ubuntu | Firefox | HTTPS Only Mode | Privacy Badger
Forum Policy | Comodo Product Help

Offline w-e-v

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 1503
  • BETA FORCE MEMBER
Re: HTTPS Website Showing Gold Padlock in URL
« Reply #18 on: April 15, 2015, 08:04:52 PM »
Mozilla has a useful wiki-page with three compatibility-levels: https://wiki.mozilla.org/Security/Server_Side_TLS#Recommended_configurations
Avoid “Old backward compatibility”.

Great info. Thanks  :-TU

Offline SamV

  • Newbie
  • *
  • Posts: 2
Re: HTTPS Website Showing Gold Padlock in URL
« Reply #19 on: August 01, 2015, 03:41:07 PM »
There are wordpress plugins which force rewrite to https. Or you can use a .htaccess. Saves you having to go through possibly hundreds of images and links.

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek