connection not secure
-
@ogurel & @Supernovia today I got the security warning again. I’m not as concerned since it’s not on a page that I will be typing any info into. Still, since ya’ll are fixing things you might want to take a look at this one too. This time it popped up after I clicked on ‘Reader’ this is the warning data any idea what this one means? I am not using the domain at this time. I’m using the .wordpress.com version. I am not using the blogs I follow widget either.
warning code = mutating the [[Prototype]] of an object will cause your code to run very slowly; instead create the object with the correct initial [[Prototype]] value using Object.create vendor.81676260714aec2e4edf.min.js:8:18328
-
-
@ogurel – By console do you mean on the WordPress screen? If so then it’s just the same as the other screen shots I posted. I click on “reader” then “blogs I follow” and sometimes the warning pops up and sometimes it doesn’t.
I did the ctrl+shift+k thing you suggested and the warning in the comment above regarding mutating prototype is what was in the box.
-
Hi @faeriefiles, I took a look at your media images:
– One is from the reader. The content you were viewing probably had an image that wasn’t served over SSL.
– One is from someone else’s WP Admin (maybe even yours) that is not hosted here at WordPress.com . This isn’t the domain you mentioned here, and that site does not have an SSL certificate.
– Another one is from a different site with a custom domain. I can’t tell whether that’s hosted here or not, but because it has a custom domain (not *.wordpress.com) if it is hosted here, its SSL won’t work with the custom domain
– For the one on your own wp-login page, did you take this before you switched your site to the wordpress.com domain?
– Another one shows your custom domain (and you understand we can’t apply SSL to your custom domain)
– Another one when you were writing a post likely still had references to your custom domain. It doesn’t any more if you look at the post.
So
We can’t do much about the domains that are not yours.
And now that you’ve switched to using a *.wordpress.com domain for your own site, if you’ll close the browser and re-open it, possibly clear its cache too, those errors should be gone. Can you confirm?
-
Also, I should clarify that while we encourage browsing over SSL, it’s only particularly worrisome if you’re submitting or viewing sensitive information. So if you were purchasing something, for example, you’d want to be sure the site was secure before submitting credit card details.
If there were one page I think we should focus on, it’s your wp-login screen. But I’ve tested that and it’s not giving me SSL warnings here, so we’d need more information.
-
@supernovia I have switched back to the .wordpress.com My log in is now showing as secure and so far so good on my admin page. As you said the other pages are not as important so what really needed done is done.
Are there any plans to secure things with my WordPress custom domain I purchased from ya’ll? If not I can transfer it to another site I have.
-
I receive security certificate that I am supposed to accept. However, my browser tells me it can be a fake. I refuse it. Now, my profile and other functions do not work. I cannot also register another blog. Please, tell me if it is safe to accept this ssl certificate and the site will start working, or – Do I have another problem such as my wordpress site is hacked and that’s why it doesn’t work?
Michael Pyshnov -
Hi there Michael,
If you can give us a link to your blog we can check if there are any issues on your blog.
Also, can you tell us if you have any errors /warnings/notices showing on the browser console?
You can press F12 to open the Developer Tools and then by selecting the Console tab you can see the possible issues regarding SSL.
If you are not in a public network when accessing your account you should normally be safe however, we’ll do our best to help you solve this.
-
I’m getting the connection not secure message now and then again today. I got a screenshot of the one on my admin page. The notices are saying it has to do with Gravatar. As I said before I have already adjusted the gravatar to be on my faeriefiles.wordpress.com and not the faeriefiles.com. It isn’t popping up the error all the time either which is weird? Anyway… as always, as long as my admin and sign in screens are secure I will be a happy blogger and right now the admin page is having issue. I don’t think it’s possible to turn off Gravatar? I hate to because I like having it, however if it will fix the issue I’ll do it if there is a way to do it. Having everything else secure would be nice too but I am primarily concerned with my admin page at this time.
-
Ohhh sorry, the link to the screen shot is here = https://faeriefiles.wordpress.com/2015/12/14/for-the-staff-screenshots-again/
-
Hi!
My blog is at https://pyshnov.wordpress.com
I do not have any warnings. Simply – instead of showing me the requested page, it shows big “W”. And that is in all profile items and in registering new site.
Michael -
Are there any plans to secure things with my WordPress custom domain I purchased from ya’ll? If not I can transfer it to another site I have.
It’s not something we can support at this time. You’d be welcome to keep an eye on our blog here though: en.blog.wordpress.com — we’ll definitely make an annoucnement when we can support SSL on custom domains.
-
Hi! Thank you for help.
I did receive requests to accept certificate many times when I was on different pages, don’t remember on which ones. Today I wanted to see them again, but nothing showed. This cert. does not even allow to be “captured” by my graphic program, only frame which is from the browser, but no text shows. Yesterday I went to library to see if this is from my computer. There, no certs. and everything works; yet, may be library computer just swallows them, so no definite answer.
Today at home I still cannot get anything from my profile, but apparently I can work.
These certs. are a problem. Even some Wiki pages have them. I never download certs. Sometimes I click on cross in the upper right corner several times and they disappear. Sometimes it helps to click on Google cached. I found no explanation for this new web “feature”.
Michael Pyshnov -
After removing faeriefiles.com and putting faeriefiles.wordpress.com as my primary domain my sign in screen began to show securely which is a huge relief and I thank you. For a while my admin page was secure but then it began to show as insecure again. I posted the screen shot here = https://faeriefiles.wordpress.com/2015/12/14/for-the-staff-screenshots-again/ . I think it’s very important that my admin page be secure. On the screen shot you will notice that when I tried doing the ctrl+shift+k the errors seem to be relating to gravatar. Is there a way to turn off gravatar on my site so I can see if that is the problem? Or maybe a way to fix gravatar so it won’t cause an error. I did go to my profile and gravatar is set to faeriefiles.wordpress.com.
I do understand the issue with the domain I purchased from you not being able to be made secure at this time so I have arranged to have it transferred elsewhere. That should no longer be a problem unless just having it at all is causing problems?
I am not using the blogs I follow widget.
I know you must be getting sick of dealing with this and I apologize. I just want to make sure that my admin page is secure.
-
Transferring the domain to another provider wouldn’t make your site 100% ssl error-free. You would need to transfer the site itself too. You would likely need to get a dedicated IP address at that new host, and you would have to be vigilant about not serving anything over http. You would also then be in charge of maintaining and supporting your own WordPress installation, which is fine if you’re comfortable with it — just realize you’ll want to make sure you’re making regular backups and know how to restore them if needed.
Re: the error about a Gravatar in WP Admin, if you’ll let me know where a gravatar was appearing on that page (I can’t tell from the screenshot) we’ll see if we can get that switched over to https too.
-
@faeriefiles, I completely agree with @supernovia and can add that almost all blogs online aren’t using SSL and you will have to pay and setup the SSL certificate yourself (or pay extra for it) on top of everything @supernovia already mentioned. You will also be in charge of updating your WordPress installation as well as any plugins you may want to use (which often have several security patches every year).
I wouldn’t worry about the Gravatar being served over http which is causing the warning. Since Gravatar is also owned by Automattic (owners of WordPress), you can be confident that there won’t be any security issues.
-
@Supernovia On my admin page the only place I can consistently see my gravatar is at the top right corner where it shows up on all pages between the pencil & Bell icons. My gravatar photo also pops up on the dashboard under comments and in several other tabs here and there on admin pages but the error pops up even when the only gravatar showing on the page is the one in the top right corner.
@Supernovia & @ogurel I’m not moving my blog I’m just moving the custom domain. Basically I will put it in storage or use it for other things. I realize it isn’t going to fix all the errors, it will only fix the ones caused by having a custom domain here. It was a fun thing to have on my blog but it isn’t required, and everyone tells me it’s causing problems on my site soooo out it goes. I’ll stick to the faeriefiles.wordpress.com version.
I don’t plan to cancel my premium service here or to transfer my blog to another platform. WordPress isn’t perfect but it is the best blogging platform that I have found so far. I will deal with whatever issues arise and I not too stressed about public pages being visible by the public. If Gravatar is causing my admin page to be insecure I will dump that too, if possible. I tried to find a way to disable it to see if it is the problem but I can’t find a way. My goal is to find a way to make my sign in screen and admin page secure and with all your help we already have the sign in screen secure. The other pages on WordPress are all public so they really don’t matter much.
I’m going to try taking the photo off my gravatar and see if that helps.
-
Hi, supernovia!
No, I do not have such things and I have very limited understanding of computers and web.
Now I noticed something interesting in my cookie file. I just logged into my pyshnov.wordpress.com site and looked at cookies (only the cookies from wordpress were allowed). There, there are some cookie details, and one detail saying “Secure”. Some cookies were “true” (6 cookies) and some “false” (9 cookies). What that means I, again, do not know.
I understand that on this forum there are no images, but I actually can post these images into my site.
Michael Pyshnov
- The topic ‘connection not secure’ is closed to new replies.
WordPress.com Forums 