SSL in Session
-
fellow mozzers,
i have a question concerning ssl.
we were working on a new webshop - the login and all the steps of the shopping cart are secured with ssl, all the other (and important) sites of the webpage are regular http.
but if you have visited one site with ssl, the whole session you will be forwarded to the ssl versions, so all pages turn to ssl pages. for me this looks like a possible spider trap for an search engine as they wont find any non-https sites anymore, and these are the ones i want in the index.what do you think? my personal opinion is to make the ssl sites autonomous from the session, but i need some more opinions, as my developer are telling me that this would be alot more work for them.
thanks in advance
seth -
our site is selfmade with our own cms.
we could handle it with absolute links, but that isnt the solution i am looking for.
the question is "is the solution we are currently using, a spider trap?", if the answer is yes, we need to make it happen that only a few sites are ssl secured and it doesnt depend on session.
thank you marisa.
-
Are you using a CMS for your site? Some of them have a setting that will automatically make all the links absolute.
-
Hi Marisa,
Thanks for your reply.
My site is huge
unfortunately this solutions doesnt work for me.
any other ideas :-)?
thanks
-
Hi Marisa,
Thanks for your reply.
My site is huge
unfortunately this solutions doesnt work for me.
any other ideas :-)?
thanks
-
A quick fix if you have a rather basic site, would be, on the SSL pages, make all the links to other pages absolute rather than relative.
Instead of page.html
do http://www.site.com/page.html
Got a burning SEO question?
Subscribe to Moz Pro to gain full access to Q&A, answer questions, and ask your own.
Browse Questions
Explore more categories
-
Moz Tools
Chat with the community about the Moz tools.
-
SEO Tactics
Discuss the SEO process with fellow marketers
-
Community
Discuss industry events, jobs, and news!
-
Digital Marketing
Chat about tactics outside of SEO
-
Research & Trends
Dive into research and trends in the search industry.
-
Support
Connect on product support and feature requests.
Related Questions
-
Cloudflare shared SSL certificate vs Letsencrypt
Cloudflare does have a free SSL certificate, which is shared among many domains (in my case 30+ domains). An alternative would be to use letsencrypt and generate a dedicated certificate. Can a shared SSL certificate hurt my google ranking?
Technical SEO | | danielbeck0 -
SSL for subdomain is good or bad?
Hello, We have SSL certificate for our domain only for *.website.com, And now, we have few subdomains, as you know, we have two choices: 1. Using HTTPS for subdomain https://me.website.com, while it has problem with https://www.me.website.com (SSL error) 2. Using HTTP for subdomain, which has www and non-www with redirects. Which one is good for us?
Technical SEO | | Anetwork0 -
SSL Certificate Install Conerns
Hi guys I've recently had an EV security certificate installed on the site and have seen a drop in search visibility ever since. It was installed on Nov 27th. Though I was expecting some tracking hiccups as a result of the install and that this is a particularly competitive time of year (I know that others are bidding more aggressively on our brand terms which constitute the vast majority of our traffic) I have been quite concerned by the following: Under Acquisition > SEO > Landing Pages this has dropped to 0. In GWT, the certificate has been identified as self-signed which we know not to be the case. We've checked with the SSL provider that the certificate has been properly installed and obviously with our developers. We're just at a bit of a loss as to whether there is actually an issue and it's not just due to tracking issues and external factors. Does anyone have any advice as to confirm the existence of a problem with the install? Or how to rectify the GWT error as obviously if Google thinks it's self-signed we're not going to get the ranking benefits we were expecting? Thanks in advance for your time. Kind regards
Technical SEO | | Q-TCM0 -
SSL redirect issue
Hi guys, I have a site that has some internal pages with SSL. Recently i noticed that if i put https://mydomain.com, this URL is accessible but all the design is messed up. My site is on wordpress and i use "redirection" plugin for all the 301 redirect. So i decided to add a new 301 redirect from https://mydomain.com to my actual URL version of home page http://mydomain.com. After doing that, my home page doesn't load at all. Does anybody know what happens? Thank you for advice!
Technical SEO | | odmsoft0 -
Multi Domain SSL Certs re HTTPS migration
Hi How important is it that when migrating sites to HTTPS they have their own SSL certificates as opposed to choosing the much cheaper multi domain certificate options such as: https://www.namecheap.com/security/ssl-certificates/comodo/ev-multi-domain.aspx I have been told really should have 1 certificate per domain and people generally unsure about multi domain certsificates ? All Best Dan
Technical SEO | | Dan-Lawrence0 -
Would adding an SSL certificate help my website?
SSL certificates can obviously be a used as a ranking factor by Google, but would a site with no need for an SSL certificate notice a gain by adding one? Is it possible to demonstrate you have an SSL certificate without having some https pages on your site?
Technical SEO | | sthompson0 -
Verisign Trust Seal and Domain Metrics (Has noting to do with SSL)
Hi, Does anyone have any evidence or case studies that Verisign Trust seal actually raises trust metrics? I know there are the obvious benefits such as better CTR and Conversion (which could in turn raise trust metrics). But i am looking for actual sighted examples of Verisign increasing trust signals to search engines discrediting the correlation between search metrics improving. I modified this as i think people are getting confused between SSL products and the specific Versign product i am talking about Verisign Trust Seal seen here. https://www.verisign.com/trust-seal/index.html?tid=gnps This has nothing to do with security for transactions it is more geared towards all around safer user experience including Malware scans and enhanced "stand out" in SERPS. It is not just a Domain validation but an organizational or Branding authentication check" With that being said, the question still stands Does anyone have any case studies or direct examples of trust being elevated in metrics for the specific product mentioned above. Thanks.
Technical SEO | | Jinx146780 -
Is a redirect based on a session cookie hurting rankings?
My clients business is divided in chain stores. All stores are set under the same franchise. There is one domain www.company.com with branches like www.company.com/location1/content and www.company.com/location2/content etc. I've taken care of duplicate content issues with rel="canonical" and duplicate page titles are also not a concern, anymore. Right now the concept is like this: If you visit the site for the first time you get to choose between the locations. Then a cookie is set and once you revisit www.company.com it will redirect you via a php header command to the location stored in your cookie: www.company.com/location1/content. My question is if this might hurt rankings in some kind of way as these aren't permanent redirects with a 301 but rather individual ones, based on your cookie.
Technical SEO | | jfkorn0