You've made wishes, you've supported the wishes of others in the Wish List forum ... and now you get to see the wishes granted so far ... more to come!

Moderator: Antoinette from Bedford

Solo Build It! Holiday Special - Save 33%
Read Only
#1368098 by ken-admin
Thu Mar 30, 2017 4:19 pm
Quickie update on this one. We're still monitoring rate of adoption - seems to be about 0.2% per week (about 1% per month). The key question is will the rate stay linear by the time it reaches a total adoption of 40% (if it does) or will it be leveling off at or below that mark?

The techs are planning it all out in case it's a go - that planning alone is a huge job. For anyone wondering what all the issues are, read this...

https://www.link-assistant.com/news/htt ... study.html

Your sites aren't as complicated as this case study, but it gets pretty complicated when so many folks are doing so many different things, not to mention C2, Infin It!, etc.

We'll automate 80-90% of your work (ex., moving images into secure folders, internal linking, etc.), but there's some (if you're using outside resources) that you'll have to follow detailed help for.

All in all, it's a minor issue for a typical content site. The only really significant reason to do this is if the majority of other sites move that way. If a "lemming effect" takes place, we'd have to follow right along. If, as has happened many times in the past, it's just too much work for too many sites, it won't be a factor.

Google can't really disadvantage a majority of sites that don't use it, especially if they don't really need to be using it. There are no security risks in reading straight content. So even if they ever made this a minor factor, they'd almost surely scale the factor to the type of site.

There are other issues such as Stripe (see Harvey's post above), but there are other ways to work around those (not to mention lots of others ways to do transactions). Another - Browser notifications would become annoying if the majority don't go secure - no one wants to annoy users/diminish their product for something that is not of major importance for a majority of sites.

Bottom line: The dev plan is being put in place so we'll be ready to go if and when we need to do this. My gut feel is that we'll end up doing this, being a follower and not a leader on this. It's not a dev that I want to do (since ther are always other projects on the plate) unless it's truly needed.

If/when we do it, it'd be done well before it would become a Google factor.

All the best,
Ken
#1368531 by Al from Sezela
Thu Apr 06, 2017 11:46 am
Understandably SBI sites generally have nothing to worry about with HTTPS security warnings.

However, I recently spent $300 on PHP hosting and membership directory software. The plan was to use infin it! to add the directory as a subdomain to an exisiting successful SBI! website (not my own)

so the domain would appear as

http://www.directory.mysite.com

Being ignorant I bought everything I needed thinking that I would be able to secure backend logins for my listing owners by purchasing SSL certs for the hosting (inmotion)

BUT!!

Now I learn that the entire domain must be secured!!

This can only be done by SBI! according to Inmotion.........

When a listing wishes to login to the backend so they can edit their listing they will see the

"This connection is not secure. Logins here could be compromised"

warning.

Here is the page:

[url]
http://www.chiropractichelpdirectory.co ... /index.php[/url]

Ken, would you place your banking details in a site after seeing this warning, and more importantly do you remotely believe that nontech visitors would even consider doing the so?! NOT A CHANCE

There is no mention whatsoever of SBI!'s policy on SSL in the infinit! page:

http://help.sitesell.com/infin-it.html

So unless I can find a workaround......I just blew $300
#1368537 by Dan from Saint Albans Bay
Thu Apr 06, 2017 2:28 pm
Hi Al,

I did basically the same thing as you using inmotion. However, instead of setting it up as a subdomain I purchased a new domain name for my member site and added SSL to that domain. I then put a login button on my SBI site that goes to a login page on the https member domain.

I'm guessing you need to display the listings on the SBI site, so what I did probably won't work for you. Perhaps there is a way to syndicate the listings so you can serve them your SBI site in the same way you can display a news feed?

I would have loved to have hosted my member site on my SBI domain, but not having access to PHP/mySQL and no support for SSL made purchasing a new domain my only option.

Dan
#1368595 by Al from Sezela
Fri Apr 07, 2017 10:07 am
Hi Dan,

Thanks for your input.

I like the idea of placing a login link.

My real need is to get all the ranking juice from the main site, so I am going to try and use a CDN to redirect the SBI site. I can apply SSL to the redirected site itself (in theory!).

Al
#1368732 by Clayton from Coe Hill
Sun Apr 09, 2017 11:29 pm
Al, if you haven't yet, please contact support with a clear description of what you want to do and what you already have purchased.

Something is not sitting quite right with what Inmotion has told you. I'm positive we can find a way to make it work.

Cheers!
#1368759 by ken-admin
Mon Apr 10, 2017 2:10 pm
Quick note to Al from [Domain Private] regarding this post...

https://forums.sitesell.com/viewtopic.php?p=1368531#p1368531

I see the Clayton (our head of programming) contacted you about this just above.

He'll work with Support to figure out where this went wrong. Then we'll turn it into an article in the online help to prevent recurrence.

I had asked him whether this made sense since I could see no reason why the entire SBI! domain would need to be secure in order for the subdomain to be. But, while it didn't make sense to me, I'm far from the guru of tech and sysadmin type stuff. ;-)

He's pretty confident that there's a simple way for your Infin It! subdomain to be totally secure. It is already included in our plan for the "http > https" project.

All the best,
Ken

P.S. I really love it when SiteSellers go way above and beyond. I was really only asking him a question. Thanks very much, Clayton! :-)
#1369057 by ken-admin
Sat Apr 15, 2017 2:00 am
Update here...

Online help is now being written for this. It's unusual to write that first, but we need to lay it all out clearly, since there will be almost zero "user interface" for this. The UI will be only...

"Do you want to make your site secure ("https")? Yes__ No__"

There'll be a page of caveats, pros and cons. Then you decide.

Once you click yes, two things happen...

1) The techs automate as much as possible for you, so there's a ton that you don't have to do manually

2) Online helps lead you through the stuff that only you can change (ex., off-site features such as third party "api's," transferring social media engagement numbers), etc.

Programming group is still on standby, while we monitor uptake. I'm hoping to see it level off at no growth by 40% uptake. If that happens, we'll stay on "watchful wait." But the fact that we're committing to this with early help and detailed tech planning kind of suggests where I believe we'll end up. :-)

The tricky part here is...

1) Don't commit too soon. My job is not waste your time with something that won't actually become a thing. And third parties are bound to release functionality to make it easy to work with them when THEY become convinced this will be a thing, too.

2) Don't commit too late. My job is to not let adoption get to a level that Google can afford to make this an actual factor, or where browsers will bother users, or where Google would say, "sorry AdSense can only be put on secure pages" - there'd be a long lead time for that (but still - I want to be ahead of that.)

The window is not "threading a needle"-small. So don't worry about this. We've got you - just letting you know that the ground work is being laid.

All the best,
Ken
#1369446 by Leyla from France
Fri Apr 21, 2017 2:02 am
Hello, there's increasing talk about non-https sites being penalized in search through security warnings... I know SBI is looking into changing us to https but could we know a bit more about plans? Is this getting any closer? How will it be implemented, and when? Many thanks!
Last edited by Debs from SiteSell on Sat Apr 22, 2017 12:03 pm, edited 1 time in total. Reason: Moved from Search Engines to here, then merged with main thread on https.
Similar Topics Statistics Last post
Site Navigation - Show page link URLs
by David from California Tue Sep 12, 2017 1:47 pm
2 Replies
322 Views
by David from California
Wed Sep 13, 2017 10:36 pm

Users browsing this forum: No registered users and 1 guest