Mixed content warning occurs when a webpage containing a combination of both secure (HTTPS) and non-secure (HTTP) content is delivered over SSL to the browser. Non-secure content can theoretically be read or modified by attackers, even though the parent page is served over HTTPs.
When this is happening to your WordPress website these two things happen:
- Your visitors ignore the warning and continue browsing your website which is bad
- Or they see your website is not secure and they never visit again which is worse and I bet you don’t that.
Another thing to note is the types of mixed-content and they are “mixed active content – Also known as “Mixed-Scripting”. Mixed active content is what you don’t really want on your website as it’s dangerous. What it does is loads a script file over HTTP and the script runs code on any page which ruins the security of any page it runs on.
There is also a “mixed passive content” or “mixed display content” which happens when you have an image or any file that runs on HTTP connection. This doesn’t ruin your website security but it is also something you shouldn’t have on your WordPress website.
How Do I Fix Mix-Content Warning on my WordPress website?
That is where Really Simple SSL comes in as it detects your SSL settings and configures your website to run over https. The Plugin is lightweight thanks to its minimal option.
Installing this plugin is a really simple plugin to work with, as the name states ” Really Simple” – Let’s quickly dive in without wasting much time. To use this plugin you should have an up and running WordPress website.
- Log into your WordPress website.
- Select Plugins from the sidebar and select Add New.
- Search “Really Simple SSL” in the search bar.
- Select Install Now to install the plugin.
- Select Activate in the same location. You can also enable it from Installed Plugins on the left.
And if you want to manually install the plugin follow the steps below.
- To install the plugin manually, download the plugin zip file from WordPress.org.
- Upload the zip file and extract the folder to the website’s wp-content/plugins folder.
- Log into your WordPress site to activate the plugin.
If you enjoyed or learned something new in this post kindly click on the share button to help other people find it you can also, subscribe to our YouTube Channel for WordPress video tutorials. You can also find us on Twitter and Facebook.