A Web.com Partner

Google’s Next Move Against Non-SSL Websites

Google's Next Move Against Non-SSL Websites

If you wish to seek assistance or need some questions answered, feel free to call our sales team on 1300 694 678.

From July 1st, Google Chrome 68 will be released which aims to further take the fight to websites that are still running without an SSL certificate, and are therefore insecure. Any sites that do not have SSL Certificates will be prominently marked in the address bar:

ChromeUpdate

The purpose of installing an SSL certificate is to encrypt the data travelling between your website and your visitors, ensuring that malicious third-parties can’t get their hands on the sensitive data your customers may be typing into your website, such as passwords or credit card details.

What are the changes?

Currently, Google Chrome (which around half of all internet users use to browse online) warns users by placing a “Not secure” label in the address bar if they are visiting an insecure web page that contains a credit card or password input field.

These warnings are set to extend to a further two scenarios:

  • When a user fills in ANY input field type on an insecure web page (such as a contact form)
  • ALL insecure web pages when browsing via incognito mode

Google Chrome eventually plans to extend this warning to users to show for ALL insecure web pages, whether or not they have any particular types of input fields on them and regardless of whether they are being viewed in regular or incognito browsing modes. (You can read their full announcement on the changes here!)

So, if you’re still running your website without an SSL certificate, now is definitely the time to make the switch over from http to https!

Secure your website now

 

How do I know if I already have an SSL certificate installed/enabled?

First, try to visit your website without using any http or https prefix (to see whether your site automatically loads in http or https), for example, type: “yourdomain.com.au” into your browser’s address bar. If the site loads okay and you can see the padlock in your browser’s address bar, this means your site has an SSL certificate both installed and enabled, and nothing further needs to be done!

If your site loads but isn’t showing the padlock, try instead typing your website address into your address bar including the https prefix, such as: “https://yourdomain.com.au”. If the site loads okay, that means you have an SSL certificate installed, but it is either not enabled, or you have mixed content which is preventing the page from being fully secure.

If the site doesn’t load at all this way, that means you do not have an SSL certificate installed/installed correctly.

We highly encourage all e-commerce sites to purchase an SSL certificate for maximum protection and enhanced customer trust.

What is mixed content?

Mixed content means you have an SSL certificate installed and enabled, but something on your web page is being loaded insecurely via an http link. This could be anything from an image within your code which is being called to using its old http link, rather than its new https link. It could also be a plugin you are using to insert some other feature on your page.

Why No Padlock? is a handy tool to help you determine if you have any mixed content, and what that mixed content specifically is. Once you’ve found the culprit(s), if any, updating the link(s) to use https should solve the issue.

We’d recommend consulting your web developer if you are unsure how to tackle any of the above, as they will be able to assist you in determining and resolving any mixed content errors.

How do I get an SSL certificate?

First off, you’ll need to decide what SSL certificate best suits your needs. Click here for a handy wizard to determine which SSL certificate is right for your website.

Alternatively, you can give our sales team a call anytime on 1300 694 678 (press option 3) to have us assist you in choosing the right option, or answering any other questions you may have!

How do I install an SSL certificate on my hosting account?

If you purchase an SSL certificate through Digital Pacific, you will receive an email containing installation instructions after you complete checkout. You can also use the following handy guides from our knowledgebase which will step you through the process.

How do I enable my SSL certificate on my website?

Once you’ve determined that an SSL certificate is installed on your hosting account and ready to use, you will then need to make the appropriate changes to your website to ensure it is using the new https URL. The steps for doing this will differ depending on the sort of website you have. You may need to consult with your web developer on the appropriate steps for your website (while we’re always here to assist with your hosting services, we are unfortunately unable to provide specific web development/design advice such as this). If you’re happy to give it a go yourself, there are many useful guides online that can help (we’ve posted some below) – though we strongly recommend taking a full backup of your website prior to making any changes, just in case anything goes wrong!

WordPress: http://digitalpacific.support/kb/875/
Drupal: https://www.drupal.org/https-information
Joomla: https://docs.joomla.org/Switching_between_HTTP_and_HTTPS

Will my website’s search engine ranking be affected by installing an SSL certificate?

Yes, switching from http to https can have an effect on your Google ranking if not managed correctly, as your website address will essentially be changing from starting with http://, to starting with https://, thus giving your website a brand new address as far as Google is concerned. If your website is ranking for a particular keyword or keywords that you wish to protect, we’d recommend first researching the necessary precautions (to ensure that you don’t harm your Google rank during the switch), or reaching out to a reputable web developer/SEO consultant for assistance.

If you wish to seek further assistance or need some questions answered, feel free to call our sales team on 1300 694 678.

Google's Next Move Against Non-SSL Websites

Get tips & insights
direct to your inbox.

Sign up to our newsletter to get the most from your website hosting with insider tips, tools and guides plus 10% off your first invoice!

Have more questions
on Hosting?

Simply call us on 1300 MY HOST (694 678) during business hours, or submit a ticket through OnePanel and one of the crew will be in touch!

Get in touch
Top
Chat