DigitalOcean

Report this

What is the reason for this report?
Question

"www" is not secured...what can I do to secure it?

Posted on October 30, 2020
Security
1780abfcbf1c4f178be79932a65a0e

By 1780abfcbf1c4f178be79932a65a0e

I ran a SSL Server test here: https://www.ssllabs.com/ssltest/analyze.html?d=www.avdisco.com. The result showed “Not secure” with a ‘T’ rating. I am using cloudflare DNS manager to manage the records.

I have added one ‘A’ record with a name “www” and pointed towards my Ocean Digital Discourse domain: 104.248.156.191 and another ‘A’ record with a name, “avdisco.com”. For the latter, it has a A+ plus rating but the former with “www” isn’t. How can I get this “www” to work securely and users will not get a warning page stating that the site is unsafe to proceed?

I saw the certbot command but it did not help. Sorry for the amateur question as I’m but a normal user and have little to no background of SSL and stuff.

Pls advice on what I should do in a simple step-by-step guide :)

Thanks!

Raymond Customer



This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
0
marks567217
marks567217
October 30, 2020

Check this one https://www.webfx.com/blog/internet/my-website-is-not-secure/

0
Dikshith Shetty
Dikshith ShettyDigitalOcean Employee badge
October 30, 2020

Hello @desray2k

It appears you have obtained an SSL certificate for only the root domain so SSL certificate at https://avdisco.com/ is working fine. You might have to obtain the new certificate and make sure that you generate it for “avdisco.com” and “www.avdisco.com” using certbot.

You can refer to the tutorial link below and make sure to follow Step 4 specifically:

https://www.digitalocean.com/community/tutorials/how-to-secure-nginx-with-let-s-encrypt-on-ubuntu-18-04#step-4-—-obtaining-an-ssl-certificate

Cheers,

Dikshith

0
KFSys
KFSys
November 2, 2020

Hi @desray2k,

It seems since you didn’t have an A record for your WWW version of the website a certificate was not actually generated for it. Don’t worry, you’ll just need to reissue the certificate using the certbot service.

In order re-issue it, just SSH to your droplet and type

certbot

Then follow the steps to install it for both www and your root domain name.

That’s it!

Regards, KFSys

Become a contributor for community

Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.

Sign Up

DigitalOcean Documentation

Full documentation for every DigitalOcean product.

Learn more

Resources for startups and SMBs

The Wave has everything you need to know about building a business, from raising funding to marketing your product.

Learn more

Get our newsletter

Stay up to date by signing up for DigitalOcean’s Infrastructure as a Newsletter.

New accounts only. By submitting your email you agree to our Privacy Policy

The developer cloud

Scale up as you grow — whether you're running one virtual machine or ten thousand.

Get started for free

Sign up and get $200 in credit for your first 60 days with DigitalOcean.*

*This promotional offer applies to new accounts only.

© 2025 DigitalOcean, LLC.Sitemap.