Another http vs https Question?
-
Is it better to keep the Transaction/ Payment pages on a commercial website as the only secure ones (https) and remainder of website as http?
Or is it better to have all the commercial website as secure (https)?
-
I really appreciate your help. This information will definitly help me to keep my site all throughut as https the same way I wanted it to be from the beginning.
You are the Best.
S.H
-
No problem - you could place canonical tags on all the http:// pages to the https:// -
have a look at this guide from SeoMoz -
http://www.seomoz.org/learn-seo/canonicalization
I think you should also give this recent Q&A a read as it is very informative in regards to what you are looking at -
http://www.seomoz.org/q/duplicate-content-and-http-and-https
Hope this helps
-
Wow, thank you so much for your response. It attracted my attention to new points. Is there a way to keep the site entirely as https and avoid the duplicate content issue?
I am fairly new to SEO.
I am struggling with a solution for this website which is Drupal based as I am finding it not that easy to work with from SEO point.
Again thank you so muh.
S.H
-
Hi,
Thanks for your response. The thing I had the website set as such as Http with Https oertaining to transactions only but had problems in a warning appearing on logging to website indicating that some contents of pages have insecure informtion withan option to logon anyway. This has been turning visitors away.
I however realize that I have a duplicate content issue with website being as https at the moment. I am just trying to reach a solution whereby visitors feel safe purchasing from a new website that offers quite diverse service at better price than the other competitors who are major market players.
Thanks.
S.H
-
From what I understand, login boxes usually wait to be logged in to activate HTTPS. And as for social media accounts, aren't the social media sharing and links sent to the social network? Like Twitter usually goes to API of twitter's site, which is usually HTTPS.
-
Hi,
The thing is that I have the login box on all pages of that website to allow access for purchase of Products that are quite diverse and also toenter to website's social media accounts.
That is what had led me to have it https throughout whole site
Thanks.
S.H
-
From my experience, if you are an eCommerce site, it is usually best to have https with account or checkout pages.
If you are a banking or payment processing site, it is best to have https throughout the site to offer confidence to users.
So...
eCommerce = Only in checkout/payment pages or account info.
Sensitive sites, like banking or financials = throughout the whole site.
-
This is a good question, I would consider going down the route of making your transactional/payment pages https and then anything else http - anywhere your customers have to enter their sensitive data should be https. The one thing to remember with https is that it potentially causes duplicate content from a search engine point of view:
http://www.seomoz.org/q/duplicate-content-and-http-and-https
Have a look at this interesting article in relation to https and why everyone isn't using it:
http://arstechnica.com/business/2011/03/https-is-more-secure-so-why-isnt-the-web-using-it/
Remember more importance has been placed on page load times since Panda so people are looking to shave every ounce of time they can in relation to load times, this also improves user experience.
I hope this has helps give you some more insight into HTTPs and whether it would be best for your site to be all this protocol or just part of it.
-
As long as the pages that users enter any type of private / secure information is SSL (https), than you're fine. Alternatively if you want to have your entire site https, that’s fine also.
Got a burning SEO question?
Subscribe to Moz Pro to gain full access to Q&A, answer questions, and ask your own.
Browse Questions
Explore more categories
-
Moz Tools
Chat with the community about the Moz tools.
-
SEO Tactics
Discuss the SEO process with fellow marketers
-
Community
Discuss industry events, jobs, and news!
-
Digital Marketing
Chat about tactics outside of SEO
-
Research & Trends
Dive into research and trends in the search industry.
-
Support
Connect on product support and feature requests.
Related Questions
-
Duplicate content question
Hey Mozzers! I received a duplicate content notice from my Cycle7 Communications campaign today. I understand the concept of duplicate content, but none of the suggested fixes quite seems to fit. I have four pages with HubSpot forms embedded in them. (Only two of these pages have showed up so far in my campaign.) Each page contains a title (Content Marketing Consultation, Copywriting Consultation, etc), plus an embedded HubSpot form. The forms are all outwardly identical, but I use a separate form for each service that I offer. I’m not sure how to respond to this crawl issue: Using a 301 redirect doesn’t seem right, because each page/form combo is independent and serves a separate purpose. Using a rel=canonical link doesn’t seem right for the same reason that a 301 redirect doesn’t seem right. Using the Google Search Console URL Parameters tool is clearly contraindicated by Google’s documentation (I don’t have enough pages on my site). Is a meta robots noindex the best way to deal with duplicate content in this case? Thanks in advance for your help. AK
Technical SEO | | AndyKubrin0 -
Personalized Content Vs. Cloaking
Hi Moz Community, I have a question about personalization of content, can we serve personalized content without being penalized for serving different content to robots vs. users? If content starts in the same initial state for all users, including crawlers, is it safe to assume there should be no impact on SEO because personalization will not happen for anyone until there is some interaction? Thanks,
Technical SEO | | znotes0 -
Pro's & contra's: http vs https
Hi there, We are planning to take the step and go from http to https. The main reason to do this, is to mean trustfull to our clients. And of course the rumours that it would be better for ranking (in the future). We have a large e-commerce site. A part of this site ia already HTTPS. I've read a lot of info about pro's and contra's, also this MOZ article: http://moz.com/blog/seo-tips-https-ssl
Technical SEO | | Leonie-Kramer
But i want to know some experience from others who already done this. What did you encountered when changing to HTTPS, did you had ranking drops, or loss of links etc? I want to make a list form pro's and contra's and things we have to do in advance. Thanx, Leonie0 -
Which Sitemap to keep - Http or https (or both)
Hi, Just finished upgrading my site to the ssl version (like so many other webmasters now that it may be a ranking factor). FIxed all links, CDN links are now secure, etc and 301 Redirected all pages from http to https. Changed property in Google Analytics from http to https and added https version in Webmaster Tools. So far, so good. Now the question is should I add the https version of the sitemap in the new HTTPS site in webmasters or retain the existing http one? Ideally switching over completely to https version by adding a new sitemap would make more sense as the http version of the sitemap would anyways now be re-directed to HTTPS. But the last thing i can is to get penalized for duplicate content. Could you please suggest as I am still a rookie in this department. If I should add the https sitemap version in the new site, should i delete the old http one or no harm retaining it.
Technical SEO | | ashishb010 -
Canonical link tag for https - any disadvantages for SEO?
Hi Mozzers, We have a website that has both http as well as https indexed. I proposed the solution of implementing a canonical link tag on all pages (including the login/secure ones). Any disadvantages I could expect? Thanks!
Technical SEO | | DeptAgency0 -
Https Duplicate Content
My previous host was using shared SSL, and my site was also working with https which I didn’t notice previously. Now I am moved to a new server, where I don’t have any SSL and my websites are not working with https version. Problem is that I have found Google have indexed one of my blog http://www.codefear.com with https version too. My blog traffic is continuously dropping I think due to these duplicate content. Now there are two results one with http version and another with https version. I searched over the internet and found 3 possible solutions. 1 No-Index https version
Technical SEO | | RaviAhuja
2 Use rel=canonical
3 Redirect https versions with 301 redirection Now I don’t know which solution is best for me as now https version is not working. One more thing I don’t know how to implement any of the solution. My blog is running on WordPress. Please help me to overcome from this problem, and after solving this duplicate issue, do I need Reconsideration request to Google. Thank you0 -
How About Moving My Site to Another Domain?
My website has been hit by a Google Penguin penalty. At this point, it seems very few websites have recovered from this penalty even after it was lifted. That said, I'm still wondering if I should start a new website or my current one to another domain. When I started my website, I registered the domain name http://www.thewebhostinghero.com A few years later, I bought webhostinghero.com as it became available. Actually, webhostinghero.com redirects traffic to thewebhostinghero.com at the registrar level. There are barely any links pointing to webhostinghero.com. TheWebHostingHero.com is quite a big website with over 1400 pages and some very useful tools (http://www.thewebhostinghero.com/free-tools) that took me so long to develop, I just can't believe I'd have to throw it all out the window. So that said, do you think it would be possible to move all or some of the content from thewebhostinghero.com to webhostinghero.com? Would that make sense? Would webhostinghero.com come out as a copy of thewebhostinghero.com since the domain is similar, etc.? Of course, moving the content from thewebhostinghero.com to webhostinghero.com would have to be done without any 301/302 redirects to avoid passing bad link juice. At the same time, I don't want to end up with duplicate content on both domains.
Technical SEO | | sbrault740 -
Https Version of Homepage in SERPS
The https version of our homepage appears in Google's SERPs. We have rel canonical on the page pointing to the http version. We have a redirect in our htaccess that sends https to http. I thought this was just a fluke and it would be fixed by the next crawl, but it's been like this for a few weeks now. Not only that, but we're losing rank a bit and I'm afraid there's a correlation. Has this ever happened to anyone?
Technical SEO | | UnderRugSwept0
