I am using infinityfree.net as hosting and the domain I bought from hostinger. I need to see my page without www, in order to always redirect to that same url.
I am afraid the actual issue here rather is that your host did not provide you with a valid SSL certificate and you’ll also have an insecure encryption mode on Cloudflare.
In short, your site still is not secure.
So should you change from flexible to full strict? my site is only visible with ssl security in this url: https://www.emprendimientoysalud.com/. In this site: http://emprendimientosysalud.com/ it shows as insecure, but that is not a problem, I can do a redirect to https. The problem lies only with this url: https://emprendimientosysalud.com/
Yes, because currently you have no encryption. It’s all in the article, also how to address the issue.
Okay, I’ll make the changes right away and go to sleep. I hope the problem is resolved in the morning. I will write again in case the error continues to appear
ok, enter the infinityfree cpanel, then ssl / tl and click update, add the key and the certificate. With the key I have no problems, but when updating the certificate, it gives me the following error: The certificate uploaded is NOT for the domain name emprendimientoysalud.com (CloudFlare Origin Certificate was seen)
after searching through many threads and watching various videos. I found this video: How to connect Infinityfree with Cloudflare and get Free SSL | Infinityfree + Cloudflare + WordPress - YouTube.
I followed all the steps and it worked perfectly. I have the ssl in flexible and after making the changes I just had to delete the history. Great now I have https://emprendimientoysalud.com available
In that case you still have a security issue.
The website is a static site, it was just a site for someone I made. I tried to follow the steps in the tutorial you provide me. But I always get error adding both Cloudflare Certificate of Origin and Cloudflare Origin RSA PEM. My host provider: InfinityFree always throws an error when adding either one.
I can’t keep trying something that always turns out to be an error, I think I shouldn’t worry about attacks on the site, since it doesn’t have sensitive information such as credit cards, phone numbers, etc.
Agreed, if there is no sensitive data on it, switch the encryption mode to “Off” and you are good to go.
This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.