Time to get SSL!

[t3hl33td4rg0n]

There really is no downside to this.

https://searchengineland.com/effect...ill-mark-non-https-sites-as-not-secure-291623

EFF offers free SSL certificates and is a certified authority.

I'm assuming this site is just a LAMP setup with Apache, no worries, certbot makes this super easy to implement.

 

[Seyiji]

We cool bro :D

 

[t3hl33td4rg0n]

Oh FFS, had no idea.

Put in a redirect to force HTTPS in your apache config plz

RewriteEngine on
RewriteCond %{SERVER_NAME} =rage3d.com
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]

EDIT: Some resources are still being requested via http and causing mixed-content errors. Chrome will soon be giving users grief with this. Forcing a redirect on httpd should fix this (code above).

 

[t3hl33td4rg0n]

HTTPS also causing youtube embeds to not work due to the reason stated above.

 

[Greasy]

Chrome, and Edge don't support embedded content on an HTTPS site that links to non HTTPS content. If you tried viewing that in IE11 it should work.

 

[t3hl33td4rg0n]

Chrome, and Edge don't support embedded content on an HTTPS site that links to non HTTPS content...

That's great and all, except it's an iframe, not an embed, but that doesn't really matter anyway. Puling any resource with HTTP via a secured HTTPS connection resource is no bueno; this is frowned upon in the modern web and rightfully so.

 

[Seyiji]

http://www.rage3d.com/board/showthread.php?t=34034129
You were there billy dont you remember that time :E

Also http://www.rage3d.com/board/showpost.php?p=1337967821&postcount=15

 

[t3hl33td4rg0n]

Hah! Completely forgot about that

In any case, should start forcing an HTTPS redirect and fix the youtube bug.

 

[daPhoenix]

Put in a redirect to force HTTPS in your apache config plz

If only it was. It's IIS behind Cloudflare proxy cache.

 

[t3hl33td4rg0n]

IIS

 

[metroidfox]

All this time and I didn't realise we had https!