Getting Privacy/Certificate Errors vs. Taking people to my site
-
Hi,
Please help.
I went to my site directly today (instead of signing in to WordPress as I was sending the link for a job reference) and got a message that my site is not secure nor private. Attackers may be trying to steal my info…Bigger issue: Saw this message:
The server could not prove that it is http://www.theappreciationfactor.wordpress.com; it’s security certificate is from *.wordpress.com. This may be caused by a misconfiguration or an attacker intercepting your connection.I tried all three big internet portals – Chrome, Firefox and InternetExplorer. I do NOT get this on IE, but do get above message on Chrome and Firefox.
Can someone please help with renewing (if that’s what’s needed) the certificate or what I can do to not have this come up. (I would think this would be a WP thing that lapsed but…)
Currently this message make my site look fake or problematic from a security POV and as I cannot dictate to a potential employer which platform to use (e.g., IE over Chrome) it could hurt me – when in fact it’s helped to show my writing skills.I saved a screen grab of the messages but could not attached nor copy in paste, but happy to send.
Your help would be greatly appreciated!!! (No pun intended!)
Kris of TAFThe blog I need help with is: (visible only to logged in users)
-
The correct URL for your site is https://theappreciationfactor.wordpress.com/
All wordpress.COM URLs are encrypted. Please read HTTPS and SSL https://en.support.wordpress.com/https-ssl/
-
Hi @theappreciationfactor, as timethief mentioned, your site name doesn’t really have a www in front of it.
If you type http://www.theappreciationfactor.wordpress.com it will redirect automatically to the non-www secure version; no problem. But if you type https://www.theappreciationfactor.wordpress.com it has to mind your security request, and since the certificate is for the site without a www, you’ll get an error.
I hope this helps.
-
Thanks Timetheif and Supernovia –
Not sure I’m 100% just yet.I’ve shared http://www.theappreciationfactor.wordpress.com before without issue.
Has this changed? I may be using a public computer that tries to encrypt. So perhaps not all computers see this? (As I’m limited to using the one I’m on I don’t know…)
If I want to share my blog address with people I would never use the www? (Just want to ensure that I’m 100% here.)
Thanks again for helping me with these questions and the initial forum submission.
K -
All sites hosted by wordpress.COM are SSL sites. Read HTTPS and SSL https://en.support.wordpress.com/https-ssl/
All www URLs on mapped domains seamlessly redirect to the same content under the URL without the redundant “www” which has not been required for over a decade. The software will continue to strip out the redundant and unnecessary www if you are entering it.
Be aware that www is an old protocol from way back when the web was new and everything was under separate server hardware. www (www.example.com) was the web server, mail (mail.example.com) was the mail server, ftp (ftp.example.com) was the FTP server, print (print.example.com) was the print server, etc.
These days, everything is run under the web server, making www. redundant and a waste of four characters.
We just don’t use the www prefix on domains connected to WordPress.com sites. We redirect that prefix, so if you want to use the www on your business cards, etc, you can by all means do that, but it won’t display if someone views your site in their browser.
We state that we don’t use the www prefix on the Register a domain support page, here:
This is a server-side setting that applies to every site on WordPress.com, and there is no way to force it to display the www or to add an exception for a specific site. If that is unacceptable to you, you will need to find another provider to host your site. https://en.forums.wordpress.com/topic/i-waisted-hours-and-hours-talking-to-a-support-that-didnt-help-with-simple-dns?replies=5#post-3005149
-
If I want to share my blog address with people I would never use the www? (Just want to ensure that I’m 100% here.)
Yes, the correct URL for your site is https://theappreciationfactor.wordpress.com/ without the www.
-
OK I’m now understanding you. I never saw this issue come up, but perhaps others have been when I’ve shared it with them.
Thanks for your patience and detail in getting me on the same page.
You’ve once showed your superior WP skills!
K -
-
@theappreciationfactor the issue is that you shared http://www before — which will redirect just fine to the correct URL. https://www will not work fine.
-
-
- The topic ‘Getting Privacy/Certificate Errors vs. Taking people to my site’ is closed to new replies.
WordPress.com Forums 