ac1643

Hi again, thanks for the explanation and the article link. Am I right in thinking that if the url displays a broken lock symbol, that indicates mixed content on a web page (inserted via a css or js file), whereas a green lock implies all is ok?

Some final queries about the settings. If I want to change the settings to redirect via the htaccess, do I need to turn off the wp and js redirect options or should they remain ticked?

I assume this will just add some code to the top of the htaccess file. Could I ask your advice of placement of the code? I have some litespeed code:

<IfModule Litespeed>
RewriteEngine On
RewriteRule .* – [E=noconntimeout:1]
RewriteRule .* – [E=noabort:1]
</IfModule>

and WAF code from the ninja firewall plugin:

# BEGIN NinjaFirewall
php_value auto_prepend_file /home/helenhpa1/public_html/wp-content/nfwlog/ninjafirewall.php
# END NinjaFirewall

Should the redirects be before or after these bits of code?

Many thanks

Yes! that has worked thanks. I’ll activate and then see if logging in via the frontend of the website still works.

Also, in the activate box it says to check for “Http references in your .css and .js files: change any https:// into //”

Are these the mixed resource issues mentioned in the documentation? I was under the impression the plugin handled these but is that only the pro version of the plugin?

Could I just confirm something that I’m still not totally clear about. If I was to add in the redirect code myself and change the http to https in wp general settings, would I be replicating what the basic plugin does? Does it do anything addtional to this? And does it protect the admin area as well?

I know its a lot of questions! Thanks.

Quick update. The website now shows a green lock in the url at the front end. However i says it comes from avast whereas I thought it should be issued by my hosting provider. Also when I try to go into the admin area I now get a message telling me the area is disabled.

I haven’t used ssl before and I’m getting a bit confused! I was hoping it would be fairly simple to set up but it appears not. Do you think you can deduce anything from the information I’ve provided?

Thanks

Thanks

ok thanks for clarifying that

Hi, sorry for the delay, I’ve been testing different issues.

If I type in https the website does come up and I get a ‘blocked insecure content’ warning from the browser. So I assume it is using the https connection although is only displays www. in the url.

However I still get the message from the plugin that no ssl certificate has been detected and that I should try reloading using https.

I tried before inserting the appropriate redirect code into the htaccess file and changing the website url in wordpress general settings to https. This did bring up the green lock sign but I had issues logging in properly which I think was a conflict with the firewall. However I believe I’m right in thinking that I shouldn’t need to do this because your plugin should set everything itself.

DO you have any suggestions?

ok thanks

Hi again, sorry for the delay,

Do you mean that I should manually insert code rather than use your plugin? Or do you mean I should insert that code for the admin area?

If you are saying its quicker to manually insert code in the htaccess file, should I do that for the frontend of the website as well instead of using your plugin? I guess I’m asking for clarification on the benefits of using your plugin over manually editing the htaccess file.

Thanks

Thanks, where do I check/change the auto_prepend_file path (sorry I’m not that advanced with these things)?

Hi,

Its definitely all turned on and set up correctly because everything else is being hidden as it should be. Its just the appearance button which won’t hide for some reason.

Do you have any other idea what could be the problem?

Thanks

Actually I also get an error on the same site with or without the litespeed code. The error is:

Warning: Unknown: failed to open stream: Permission denied in Unknown on line 0

Fatal error: Unknown: Failed opening required ‘…/public_html/wp-content/nfwlog/ninjafirewall.php’ (include_path=’.:/usr/lib/php:/usr/local/lib/php’) in Unknown on line 0

Great, thanks for confirming.

Thanks

Many thanks for your quick response and advice. I’ve looked into this a little further and think I understand better now.

Hi Scott,

Sorry, I’ve been away the last few days and didn’t get time to pursue this. That’s great, thanks for looking into it and fixing the issue.