Tips Tuesday – cPanels in WHM Webinar, Chrome Non-HTTPS Warning

Hello Happy Site Owners!

Tips this week include:

• My Eclipse 2017 experience
• cPanels in WHM Webinar on Thursday
• New NOT SECURE penalty in Chrome for non-HTTPS sites
• Why an SSL certificate is not enough
• Whether your host offers free SSL certificates or not
• I’m asking for your help to bust the myths and rumors

Listen to the Podcast

Podcast: Play in new window | Download

Subscribe: RSS

Watch the Live Recap and Breaking News

Join me live on the BlogAid Facebook Page or catch the replay on the BlogAid YouTube Channel

BlogAid Happenings

This is going to be a rather short, and to the point podcast today.

That’s because there are only a few super serious things you need to focus on as a site owner from now until the end of the year.

And, because I took off part of yesterday for the eclipse!!! I live in a prime viewing zone and wow!!!!

It was an amazing event to witness.

I video recorded some of it and you can see that on my personal YouTube channel.

cPanels in WHM – Webinar Series

I want to remind everyone, especially my Webmaster Training members about the live webinar on Thu, Aug 24 at 1pm ET for cPanels in WHM Hosting Accounts.

This is the 2^nd of 3 webinars in the WHM Hosting series.

We’ll be covering:

• Domains to use on WHM
• Packages
• Set up a cPanel
• Modify cPanel
• Delete cPanel
• Skeleton Files you can put into every new cPanel
• cPanel Migration

A WHM account is a must-have now for anyone with multiple sites including designers and trainers that need to set up temporary sites for client projects.

So, do be sure to join in live.

WHM Tour Replay Ends Thursday

Quick reminder for all those who attended the first WHM Tour Webinar that access to the replay ends on Thursday for non Webmaster Training members.

So, do be sure to watch it again to learn more about why you need a WHM Account for your multiple sites.

4 Essential Upgrades for Your Site Foundation

I’ll have a post for you later this week with the 4 non-optional site foundation upgrades, but in short, they are:

• PHP 7
• HTTPS
• Security
• Speed

So, look for that post.

New Non-HTTPS Site Penalty

The huge news this past week was Google announcing that starting in October, the Chrome browser will show a big honking NOT SECURE warning for any non HTTPS site that is collecting any type of data.

Collected data includes:

• Emails on optins for things like newsletter signup
• All info on forms

That’s going to pop just about every site owner I know!

This is the 2nd such penalty Google has issued for non HTTPS sites this year.

The first was back in February for any sites taking passwords, like member sites.

You have likely noticed new browser warnings for that on your WordPress login page too.

Get a real HTTPS Conversion

There are the duct tape and chicken wire ways to make your site HTTPS, and many of them are free and offered by your host.

Don’t do it!!

Here’s the short list on why not to go the free route:

• If it worked, I’d do it for myself and my clients.
• Your site is not actually converted to HTTPS all the way through.
• You may get a green padlock only because some elements are being blocked by the browser.
• And you’re missing all of your security headers, including the one required to get on the Chrome safe site preload list that every other browser copies with Google’s blessing.
• None of your 3rd party accounts are properly updated, like Google Analytics, Search Console, or social media.

Read my post on the Top 10 Reasons NOT to do Free HTTPS Conversion for more details.

An SSL Certificate is Not Enough

“My host issued an SSL certificate, so I’m all set.”

That myth is #3 in the Top 7 Myths About HTTPS Site Conversion.

Here’s another one.

“I only need to use the SSL certificate issued by CloudFlare.”

That leaves your site open to man-in-the-middle attacks because CloudFlare is using an unencrypted port to pick up your site files from your host.

Does Your Host Offer Free SSL Certificates Yet?

Some site owners are going to be in for a very rude awakening when they discover their host doesn’t even offer free SSL certificates likes Let’s Encrypt.

Insult to injury will be discovering they still have more than 6 months left on their term with that host and it’s too expensive to leave.

Those EIG owned hosts include:

• HostGator
• BlueHost
• A Small Orange

Other hosts include:

• InMotion Hosting

There is a temporary way around this, just to get you through this October penalty.

Contact me for details.

HTTPS and Pinterest Counts

I’m researching the rumor that folks are losing their Pinterest share counts when they flip to HTTPS.

None of my clients are losing their counts, so I don’t know where this is coming from or what’s behind it.

I’m guessing folks who lost their counts either:

• Didn’t have their HTTPS conversion done properly
• Goofed something in the share count recovery if using a plugin like Social Warfare.

I’ll keep looking into it.

Social Warfare had an update a few days ago that didn’t go well and their site has been down. So I’ll be looking into their docs on it as soon as that issue is fixed.

Isn’t this the 4^th time they’ve completely rebuilt that plugin?

Tell Every Site Owner You Know about HTTPS and PHP 7

It truly boggles my mind how many millions of site owners have not heard that they need to switch to PHP 7 and get their sites converted to HTTPS now.

I’m asking you to help spread the word.

You’re in blogger groups.

Tell those folks about it.

Help me dispel the rumors and myths and misinformation.

Thank you, thank you, thank you!!!

Wrap Up

That’s a wrap for this week’s Tips Tuesday.

Find these tips helpful? Share them with your peeps!!!!

Listen and Watch

Get the BlogAid Tips Tuesday Podcast on iTunes or Stitcher

Catch the Tips Tuesday recap and BlogAid Today Tips livestreams on the BlogAid Facebook Page.
Catch the replay on the BlogAid YouTube Channel

Subscribe to all BlogAid Posts via email so you never miss anything!

Be sure to visit BlogAid.net for more tips and resources and I’ll see you online.