Site resolves to another site
Hey guys,
Not sure which category this falls into. Site redirects to another site.
There's no redirect that we can find on both accounts. There's no update done on the site as far as I see. But for some reason when we hit the site url, it shows a certificate warning of another url. Thus when you go to advance and proceed, it goes to another website.
Going to thisdomain.ca > shows up certificate warning saying the certificate is being used by or assigned to another site anotherdomain.ca > hit advanced and proceed > goes to the said site anotherdomain.com
Only thing they have the same is that they are sitting on the same server. The site in question has no ssl. Both made through wordpress. We have no access to their wordpress accounts. Has anyone heard of this issue?
-
This will always happen if you go to a site https and the site does not have a certificate. Apache does not know what to do, so it gives you the first site in the configuration with a valid SSL. The solution is to get a cert issued for that site. 0 -
Have you checked if the site has a HTTPS redirect? in the htaccess or database? 0 -
Thank you for your reply guys This will always happen if you go to a site https and the site does not have a certificate. Apache does not know what to do, so it gives you the first site in the configuration with a valid SSL. The solution is to get a cert issued for that site.
First time that this happened. There's a lot of domains on the server that doens't have ssl, but this is the only one that is having this issue.Have you checked if the site has a HTTPS redirect? in the htaccess or database?
Nothing on htaccess0 -
First time that this happened. There's a lot of domains on the server that doens't have ssl, but this is the only one that is having this issue.
Just to verify, are the sites without SSL certs being accessed with http or https? Can you try to access them with https and see what happens.0 -
I believe @ffeingol nailed it, especially due to this: The site in question has no ssl.
Once you get an SSL working on that site you likely will not experience this issue.0 -
I see we were all typing at the same time :D 0 -
Just to verify, are the sites without SSL certs being accessed with http or https? Can you try to access them with https and see what happens.
Just http. even if you just put domainname.ca it redirects to the other site that has an ssl. I think there's a redirect somewhere, like Diego said, but I couldn't find it.0 -
Not sure. But was reading in cPanel docs ports that each service uses and found this To disable insecure logins via this port and only allow SSL logins, set the Choose the closest matched domain for which that the system has a valid certificate when redirecting from non-SSL to SSL URLs. Formerly known as "Always redirect to SSL/TLS" setting to On in WHM"s Tweak Settings interface (WHM >> Home >> Server Configuration >> Tweak Settings). This will redirect users to secure ports with the /cpanel, /whm, and /webmail aliases. Not sure if this would affect anything as what you have going on ? 0 -
There is definitely an https redirect happening somewhere, or else the SSL warning would not show up at all when you visit just the domain name. If you're not seeing this in any .htaccess files, it's likely to be in WordPress itself, as the siteurl value could have been configured to use https from the very initial installation. @Spirogg - no, that wouldn't be related as that only covers cPanel, WHM, and Webmail access - not individual domain content. 0 -
I believe @ffeingol nailed it, especially due to this: Once you get an SSL working on that site you likely will not experience this issue.
This is the first time this happened though. Like I said, they have had no ssl for the longest time and had no issues with this. Other account on the server have no ssl and has no issues. To be honest I think there's like only 5-8 account that I know of that has ssl and others have none. The server has atleast 90+ accounts on it. Only one is having this issue.0 -
Not sure. But was reading in cPanel docs ports that each service uses and found this To disable insecure logins via this port and only allow SSL logins, set the Choose the closest matched domain for which that the system has a valid certificate when redirecting from non-SSL to SSL URLs. Formerly known as "Always redirect to SSL/TLS" setting to On in WHM"s Tweak Settings interface (WHM >> Home >> Server Configuration >> Tweak Settings). This will redirect users to secure ports with the /cpanel, /whm, and /webmail aliases. Not sure if this would affect anything as what you have going on ?
Thanks for the reply. I turned that off, but it still calls out https0 -
There is definitely an https redirect happening somewhere, or else the SSL warning would not show up at all when you visit just the domain name. If you're not seeing this in any .htaccess files, it's likely to be in WordPress itself, as the siteurl value could have been configured to use https from the very initial installation. Thanks Rex. I'll check with the site owner. Don't have access to their wordpress.
0 -
@cPRex we assigned an ssl on it using auto ssl from cpanel. The site shows up now, but it still says it's not secured. Even when I checked the ssl information that the cert is from cpanel and issued today. 0 -
Since you already accepted the certificated warning before, you likely need to clear your browser's cache or history for that site, or try a different browser completely to see if it's working well. 0 -
Since you already accepted the certificated warning before, you likely need to clear your browser's cache or history for that site, or try a different browser completely to see if it's working well.
Done that already with multiple browsers. Same thing, Show the padlock but with the exclamation point warning not verified. But when you view the information of the certificate, it shows cpanel registered. Usually, you'll know the certificate is okay when you run your mouse on the padlock and it will say verified by cpanel inc.0 -
Done that already with multiple browsers. Same thing, Show the padlock but with the exclamation point warning not verified. But when you view the information of the certificate, it shows cpanel registered. Usually, you'll know the certificate is okay when you run your mouse on the padlock and it will say verified by cpanel inc.
Perhaps mixed content so it's secured but loading insecure images/resources forces the browser to show it unsecure. Also, if you have access to php my admin, check the table wp_options, it may have something as "https:// domain.ca" in two options, which forces the https redirect.0 -
@whipworks - at this point it might be best to create a ticket with our team so we can check the site directly. If you are able to create a ticket, please post the number here so I can follow along. 0 -
Perhaps mixed content so it's secured but loading insecure images/resources forces the browser to show it unsecure. Also, if you have access to php my admin, check the table wp_options, it may have something as "https:// domain.ca" in two options, which forces the https redirect.
Yes Diego. We found some images that is http and not https. Also some links. We told them to fix that. Thank you guys for your input and time :)0 -
@whipworks - at this point it might be best to create a ticket with our team so we can check the site directly. If you are able to create a ticket, please post the number here so I can follow along.
Question, wouldn't the ssl certificate convert all images that are not http to https?0 -
No. The SSL does not / can not change code in your site. 0 -
You can always use this sql query: 1) UPDATE wp_options SET option_value = replace(option_value, 'Website Domain Names, Online Stores & Hosting - Domain.com', 'Parked at Loopia') WHERE option_name = 'home' OR option_name = 'siteurl'; 2) UPDATE wp_posts SET guid = replace(guid, 'Website Domain Names, Online Stores & Hosting - Domain.com', 'http://www.newdomain.com'); 3) UPDATE wp_posts SET post_content = replace(post_content, 'Website Domain Names, Online Stores & Hosting - Domain.com', 'http://www.newdomain.com'); 4) UPDATE wp_postmeta SET meta_value = replace(meta_value, 'Website Domain Names, Online Stores & Hosting - Domain.com', 'http://www.newdomain.com'); MAKE SURE TO TAKE A BACKUP FIRST, SO IF YOU MESS UP THINGS CAN ROLLBACK. 0 -
No. The SSL does not / can not change code in your site.
The site is made using wordpress. I'm just curious as to why some image links are https and some are not. Which is probably triggering the warning. Also, we noticed that the ssl works differently on different browser. Chrome/Safari shows site is secure. But Firefox shows site not secure (parts of the pages not secure: images)0 -
If it's WordPress, make your life easy. Install/active Really Simple SSL plugin and you're done. It will change any http references to https (on the fly). My guess is that Chrome/Safari as actually discarding the insure content. you can verify that by looking at the Web Developers / Tools console. 0 -
If it's WordPress, make your life easy. Install/active Really Simple SSL plugin and you're done. It will change any http references to https (on the fly). My guess is that Chrome/Safari as actually discarding the insure content. you can verify that by looking at the Web Developers / Tools console.
Will let them know about Really Simple SSL plugin. Yeah not sure why chrom/safari yields different results than firefox. Even when googling the site, it doesn't show any results of their site. It's like it doesn't exist lol0 -
Would this SSL issue affect google search results and how browsers call out the site? Just curious as to why googles search doesn't yield results for their site, and calling their site via http and https shows 2 different sites when using chrome and/or safari? 0
Please sign in to leave a comment.
Comments
25 comments