Website Not Secured

Security
#1

I’m currently on the free plan, wordpress website: https://blankenshippcs.com/new/

I turned on the settings under SSL/TLS but I noticed when I visit the website sometimes it says it is secure and now it just says not secure again (it goes on/off). No security certificates have been added.

Please help

#2

Was it secure before you added it to Cloudflare?

1 Like
#3

Nop, it was never secured. How can I make it secure 100%?

Thank you

#4

Thanks for asking. 100% security starts at your host. They should add an SSL/TLS certificate to the their server for your website.

1 Like
#5

Thanks for the reply, name servers are on cloudflare and registry is namesilo but they said everything is on cloudflare.

Here are the DNS records

Screen Shot 2021-12-06 at 2.56.08 PM
Screen Shot 2021-12-06 at 2.56.08 PM1018×425 32.2 KB

#6

Screen Shot 2021-12-06 at 3.00.12 PM
Screen Shot 2021-12-06 at 3.00.12 PM1048×908 116 KB

#7

Are you sure you have Full (Strict) set in the SSL/TLS overview page?

If not, you should change it, and here’s why!

1 Like
#8

Those DNS records point to A Small Orange hosting. That’s the place that needs to configure SSL for your site.

1 Like
#9

Hey everyone, all the setup was done by an external marketing company a few years ago and now we finally discovered the hosting is done under Nine Host using their own account.

Unfortunately we are not able to access their Nine Host account. But we do have Cpanel access where we checked the status of the SSL/TLS and all the certificates have expired.

We contacted the marketing company and they told us SSL is sent up from cloudflare, there are apps we need to download to reset this up again. SSL certification are found in the CPannel to update.

Please we need help on how to set up the security again with the certificates either through Cloudflare or Cpanel.

Attached are the images of the SSL status on Cpanel and Cloudflare SSL settings.

Screen Shot 2021-12-08 at 5.34.49 PM
Screen Shot 2021-12-08 at 5.34.49 PM1085×833 69.6 KB

Screen Shot 2021-12-08 at 5.34.31 PM
Screen Shot 2021-12-08 at 5.34.31 PM1452×844 108 KB

#10

Cloudflare will only provide an Origin certificate for your :orange: hostnames, which are blankenshippcs.com and www.blankenshippcs.com. The ‘www’ one is typically covered by a wildcard *.blankenshippcs.com.

For those two hostnames, you can generate an Origin CA Certificate if cPanel will let you upload them to your server.

https://developers.cloudflare.com/ssl/origin-configuration/origin-ca

1 Like
#11

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.