Yahoo Answers is shutting down on 4 May 2021 (Eastern Time) and the Yahoo Answers website is now in read-only mode. There will be no changes to other Yahoo properties or services, or your Yahoo account. You can find more information about the Yahoo Answers shutdown and how to download your data on this help page.

?
Lv 5

How to secure a website?

So I've been making some minor mods to my friends business website; little changes like text and pics. I don't know much html and nothing of java script although I do know the site has some .js files.   I noticed firefox displays a yellow "insecure" triangle next to the URL.

Can anyone explain to me the basics of "securing a website." Do I have to purchase something to do that? When I look it up and I get are offers to sell me something called SSL.  This in not an e-commerce site, just a basic description of my friends consulting services.   In fact the only reason for modifying it at all is because there were a few flash animations. I have replaced them with still images but I have not deleted the old .swf (flash) files. Should I?

3 Answers

Relevance
  • 2 months ago

    Check with your webhost to see if free SSL is available. Most offer it free. To take advantage of it, you may also need to update the .htaccess file to redirect any http requests to become https requests. This is simple stuff and examples are available on many sites. None of this requires changing the html itself. This does not make the site more secure, but it does address the issue of being marked as insecure.

  • 2 months ago

    You will note that some URLs begin with "http://"/ while others with "https://"./  Any web site that has the "s" after "http" is a secure site.

    That simply means that any information that goes to the site is sent in a way so that no one can see the information.

    Normally a packet of information is released on the Internet and left to find its own way to its destination.  It travels through routers asking for directs to its destination.  It is possible for each of those routers to read what you have sent.

    With https, it first sends out an empty package that finds a router to the destination.  It then reserves that router so that anything you send goes straight to the destination and does not have to ask directions and no one can read it.

    This is done if you will be sending information like a password, credit card number, SS number ,etc.  90% of web sites are not secure because they are not designed for people to send or receive that type of information.  

    The triangle is there as a reminder to people that any information they send is not going to be encrypted.  Hopefully that will keep them from sending that type of information.  But if they do, it does NOT mean that the information will be hacked.  It just means that it is easier for people to hack it.

    To make the site secure, you do have to have an SSL (Secure Sockets Layer).  That is what sets up the secure connection between their PC and your web site. 

  • Anonymous
    2 months ago

    Sounds like you need to get an SSL certificate for the site. Nothing to do with Javascript or HTML. It means that without the certificate the authenticity of the site cannot be validated.

Still have questions? Get answers by asking now.