Archived and Closed
This conversation is no longer open for comments or replies and is no longer visible to community members. The community moderator provided the following reason for archiving: Archived
Google sent a message saying there will be an error displaying soon for any form on a page that doesn't use https. Within my homestead based site I don't believe I control whether my site uses http or https, do I? If I do, I can't find how to change/update this within the management tools I have. If I don't control this on my homestead site, how will it be fixed? I'm freaking out because all of my pages have a form and according to the google warning, visitors are soon going to get an error message any time someone sends me something in my form from any page. Help please!!!!
-
846 Points
- very worried
Posted 9 months ago
-
434 Points
-
1,018 Points
Drew N, Community Manager
-
252,498 Points
We have not seen this letter. Can one of you please post it? If you prefer, you may make a private topic and post it there.
This seems like a browser change and not a ranking issue, but I should like to investigate this further.
This seems like a browser change and not a ranking issue, but I should like to investigate this further.
-
434 Points
I understand that we need to add an SSL which could be purchased for a fee from another company.
The problem is: would Homestead accept or allow a third party SSL for a 3 year certicicate?
And if so, how is this added to a website built with Homestead from scratch?
The problem is: would Homestead accept or allow a third party SSL for a 3 year certicicate?
And if so, how is this added to a website built with Homestead from scratch?
-
1,018 Points
I talked to the company I get my domain names from about purchasing the ssl from them and that is when I found out that Homestead has to allow it to be added to our sites, and that is what they are NOT allowing at this time. So if you purchased it from a 3rd party, you wouldn't be able to add it to your Homestead site at this time.
Drew N, Community Manager
-
252,498 Points
I do not know the installation requirements of all 3rd party SSL certificates. If you would like to investigate 3rd party options you are welcome to do so. Please keep in mind that on the Homestead platform there is no access to either robots.txt nor .htaccess. If access to these files is required, then it will not be possible to load the certificate.
-
1,018 Points
When I inquired about a 3rd party SSL I was told we would need access to the Homestead servers...that Homestead would have to allow it, give permission, access, etc....
Drew N, Community Manager
-
252,498 Points
Unfortunately, that is not currently possible on Homestead servers.
Drew N, Community Manager
-
252,498 Points
The most recent comments from Google that I find concerning ranking factor is this ,https://webmasters.googleblog.com/2014/08/https-as-ranking-signal.html
Here is the excerpt concerning ranking.
Here is the excerpt concerning ranking.
For these reasons, over the past few months we’ve been running tests taking into account whether sites use secure, encrypted connections as a signal in our search ranking algorithms. We've seen positive results, so we're starting to use HTTPS as a ranking signal. For now it's only a very lightweight signal — affecting fewer than 1% of global queries, and carrying less weight than other signals such as high-quality content — while we give webmasters time to switch to HTTPS. But over time, we may decide to strengthen it, because we’d like to encourage all website owners to switch from HTTP to HTTPS to keep everyone safe on the web.I continue to pass on these comments. And we do continue to monitor this situation.
-
1,018 Points
Very well put Lee. I noticed that about Homestead's url last week when this discussion started. I too hope we don't have to go elsewhere. A good friend of mine is a web designer and she has been dying to redo my website on Word Press for about 9 months now but I have been staying loyal to Homestead because I've been with them for so long and I'd hate to change but it looks like my decision to switch is being made for me.
-
434 Points
Drew
Comodo has instructions on how to add SSL certificate for dozens of companies. Why wouldn't Homestead allow us to buy a certificate and help us install it?
Comodo has instructions on how to add SSL certificate for dozens of companies. Why wouldn't Homestead allow us to buy a certificate and help us install it?
Drew N, Community Manager
-
252,498 Points
The Homestead site does have https, and always has. This has nothing to do with Google. It is so customers can log in to their accounts and email securely, and for those that desire have secure checkout pages through our shared SSL.
-
1,018 Points
Exactly! For your customers security!! We would like to offer OUR customers the same kind of security! Is this same option going to be made available to us by Homestead?
-
846 Points
Drew, your comment has really added fuel to the fire, rather than help. If, as a representative of Homestead, you understand why Homestead needs to have HTTPS for your secure checkout pages and secure access to accounts and email, which has nothing to do with google then why, as a representative of Homestead, would you not understand that we also need to offer our customers or potential customers access to securely transmit confidential data or payments, regardless of google ranking. I run a law firm. There is no way clients or prospective clients would nor should input sensitive data about a legal matter into a site that has a warning that it is not secure. There are other doctors us, regarding the same security concerns, regardless of google. Any merchant with the Homestead website has to have the same concerns. How do you think this is ok that we are unable to protect our Homestead built sites to the same extent that homestead protects its own site?
-
846 Points
-
434 Points
I am a doctor. Patients download medical information and post-op instruction forms. Who would trust an unsecured site?
Homestead should do something about it before October. If they don't, they could lose many loyal customers.
Homestead should do something about it before October. If they don't, they could lose many loyal customers.
-
1,018 Points
It is very frustrating that Homestead sees the importance of it, because the Homestead site is secure but they don't see their loyal customers websites as important as their own by not allowing us the option to make ours secure as well.
Drew N, Community Manager
-
252,294 Points
The Homestead site does have https, and always has. This has nothing to do with Google. It is so customers can log in to their accounts and email securely, and for those that desire have secure checkout pages through our shared SSL.
-
698 Points
Can we have secure pages through the shared SSL as well so we can have a https page?
-
1,018 Points
Exactly! For your customers security!! We would like to offer OUR customers the same kind of security! Is this same option going to be made available to us by Homestead?
-
1,018 Points
-
1,018 Points
-
434 Points
-
1,018 Points
Because I posted to Drew hours ago and there has been no response from him or anyone from Homestead, and because others have been trying to get Homestead to offer SSL for over a year, I think we all need to accept the fact if we want secured websites for OUR customers, we have to make a change. I have been in communication with a friend that is a web designer. There are options out there for us that offer FREE SSL when you host your site with them.
-
1,018 Points
And on my Bottomless Bucket page I used to have field forms for the customer to fill out their personal info to include credit card information and I would set them up for auto ship. Once I found out that their info was NOT secure I removed all the fields and now have it set up for them to have to call me.
-
1,018 Points
David...Exactly! So if a potential customer views that, it would appear they are not protected, even if the form really is! And I believe come October 1st there will be more of a Pop Up warning to the customer, really putting it in their face that they are on an unsecure site.
-
6,370 Points
NOT good...and the exact concern I had a year ago.
-
778 Points
Warning !!!
why does homestead ignore the urgent demand for migration to https?
Jan
with the website http://www.ajediam.com since the year 2001
-
778 Points
Dear Drew,
any good news about the SSL certificate to get a secure https site for your homestead customers?
We lost about 50% of visitors the last time probably due to backlog in https and no mute to responsive site, proposal by homestead.
We have 323 hugue pages since the year 2001 - If we have to move it will take minimum 2 man-years of work to redo these pages.
Please help and come with good news!
Thank you,
Jan
-
184 Points
-
434 Points
Just look at this page's url: https://community.homestead.com/homestead/topics/migrate-to-https?utm..............
https://community.homestead.com IRONIC!
https://community.homestead.com IRONIC!
-
5,330 Points
Indeed 2394!
Drew N, Community Manager
-
252,294 Points
Bechara2394 and Martin There is one reason that this community is https and that is so that only Homestead customers may post. It was not made secure because of any other reason.
-
6,370 Points
-
224 Points
We are in the process of looking for another place for our website as we take payments on our website and are loosing customers due to the low security warning. Too bad Homestead doesn't give a darn about our needs. Considering all of the issues migrating to the new builder earlier this year, clearly not a customer-centric company.
I'm glad we are all secure here ranting about all of the problems we have that they don't want to fix... but if my customers aren't secure doing business on my web page then I have no further interest in doing business with Homestead.
I'm glad we are all secure here ranting about all of the problems we have that they don't want to fix... but if my customers aren't secure doing business on my web page then I have no further interest in doing business with Homestead.
-
1,018 Points
Hi David....Haven't heard anything from Drew since he asked what pages on my site I was referring to. I understand you are using a third party form for your customers to use but I would imagine the problem still exists that to get to that form they have to be on your website first? And when on your website as of Oct. 1st if the customer is using Chrome, they may get a security warning message pop up that they are on an unsecure site, do they wish to proceed? And they will still see on your site to the left of the url that there is no lock to show the site is secure.
At Drews suggestion for immediate need of SSL, I made the decision a couple weeks ago to move my business site (I do have a couple other sites hosted on Homestead that are not for business and don't need to be secure). A very good friend is a web designer and uses Word Press which ranks at the top of search engines and the host provides SSL as part of the package. Will be complete in another week or so.
At Drews suggestion for immediate need of SSL, I made the decision a couple weeks ago to move my business site (I do have a couple other sites hosted on Homestead that are not for business and don't need to be secure). A very good friend is a web designer and uses Word Press which ranks at the top of search engines and the host provides SSL as part of the package. Will be complete in another week or so.
susan2829, Champion
-
42,858 Points
David it sounds like you have found a good interim solution. I'd suggest placing some sort of text both on your Home page and on the application page that the information will be obtained on a secure site. That won't eliminate the noxious Chrome warning, but if it's 'splashy' visitors will see it.
-
6,370 Points
Susan...thanks that's a good idea.
Has anyone seen what this obnoxious Google warning will look like? My concern is "low information" users, of which there are many will just move on rather than take a chance of inputting any information, even the non-threatening data we need to provide them with a quote.
It really would be nice if the Homestead guys would provide some direction.
We have countless hours invested in our Homestead site so moving it is not something I take lightly.
Has anyone seen what this obnoxious Google warning will look like? My concern is "low information" users, of which there are many will just move on rather than take a chance of inputting any information, even the non-threatening data we need to provide them with a quote.
It really would be nice if the Homestead guys would provide some direction.
We have countless hours invested in our Homestead site so moving it is not something I take lightly.
-
1,018 Points
I have found from my customers that many will move on because so many people are already very concerned about doing business online with credit card fraud that when they see the words "UNSECURE" that's all they will need. I have many customers that no matter what want to call me to place orders because of their fear of the internet. From what I can find, this is what the warning will be, although I have had customers tell me they have gotten a pop up type window warning them the site is not secure.
"Beginning in October, Google’s Chrome browser will display the message “Not Secure” in the address bar when users interact with an unencrypted webpage."
So at this time it appears this warning will be in the address bar.
"Beginning in October, Google’s Chrome browser will display the message “Not Secure” in the address bar when users interact with an unencrypted webpage."
So at this time it appears this warning will be in the address bar.
Drew N, Community Manager
-
252,294 Points
david2953, The warning will be in the address bar. It will only display on a page with a form on it and only after the visitor clicks into a form field. David, if your secure form is hosted on a secure page via a link from your site, the visitor should not see this new warning. This should be a viable solution, regardless of how our other tests work out.
Kathy1866, I am sorry I did not catch this earlier, but you will need to fix your domain. You are forwarding the domain. You want to point the domain via DNS. This is another Google ranking factor. If you go to your domain, you see the address bar changes to the .homestead.com URL. You would never be able to SSL your site because you would need to own Homestead.com to do so.
How to point will depend on if you want to use your existing nameservers and if you use any other services that have specialized DNS records set up.
Kathy1866, I am sorry I did not catch this earlier, but you will need to fix your domain. You are forwarding the domain. You want to point the domain via DNS. This is another Google ranking factor. If you go to your domain, you see the address bar changes to the .homestead.com URL. You would never be able to SSL your site because you would need to own Homestead.com to do so.
How to point will depend on if you want to use your existing nameservers and if you use any other services that have specialized DNS records set up.
-
6,370 Points
Is this what we all have to look forward to?
Drew...can you provide an update on the possible fix I think you mentioned last week?
Drew...can you provide an update on the possible fix I think you mentioned last week?
(Edited)
susan2829, Champion
-
42,858 Points
-
6,370 Points
Drew...can you provide an update on what Homestead's plans are regarding SSL. Is there a migration plan and when can we expect to have it available?
Drew N, Community Manager
-
252,294 Points
I'm going to have something that will work for you later today David. I'll make a topic and merge this one into it.
It will not solve the issue completely for Sitebuilder sites just yet, but for Websitebuilder sites it does the trick.
It will not solve the issue completely for Sitebuilder sites just yet, but for Websitebuilder sites it does the trick.
-
6,370 Points
Sounds good I am anxious to hear the solution.
Drew N, Community Manager
-
252,294 Points
Sorry David. I was much busier than anticipated today and I haven't been able to complete my new topic yet. I am currently waiting on some propagation before I can complete it. I am going to try to finish tonight, but I have to wait for the propagation to finish, which I can't predict. If it doesn't complete shortly, I will have to wait until tomorrow to check it.
Drew N, Community Manager
-
252,498 Points
-
184 Points
This reply was created from a merged topic originally titled SSL.
OK, then, what do we do if we have an older site that's not the "new Websitebuilder?" Is there any easy way to pull an older site into the newer platform?
*Never mind, I see that the platforms are not compatible. Ugh, ugh, ugh.*
Note: This conversation was created from a reply on: Can I use HTTPS on my Websitebuilder site?.
OK, then, what do we do if we have an older site that's not the "new Websitebuilder?" Is there any easy way to pull an older site into the newer platform?
*Never mind, I see that the platforms are not compatible. Ugh, ugh, ugh.*
Note: This conversation was created from a reply on: Can I use HTTPS on my Websitebuilder site?.
Drew N, Community Manager
-
252,294 Points
Wendy8827, This method should work for Sitebuilder sites if we can get some development work done. We have requested it and I will post as I get more information.
-
166 Points
that would be nice since i've had my website here since before websitebuilder was even a thing :/
Kathy1866