• Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.

Another website hijack

  • Filter
  • Time
  • Show
Clear All
new posts

    Think there are two separate issues. A bit of code in htaccess stops the security warning.

    The redirect is another problem. Doing further checks for any hacks but I am not convinced there is anything amiss in my pages or code. On my blog, https: gives me the warning and continue directs me to the host's support page. That is not a default page I have set so suspect this is something the hosts would normally be setting.

    If everything isn't black and white, I say, 'Why the hell not?'
    John Wayne (My guru, not to be confused with my beloved prophet Jeremy Clarkson)


      It could be something to do with the way the web hosting is configured. Presumably it's a virtual host, so it needs the Host: HTTP header to know which site to serve. If it's misconfigured for HTTPS connections, it could be presenting the SSL certificate for the other site (hence the message about the cert being for a different domain). If the browser then retries via a non-secure connection, perhaps it gets confused and uses the domain for which the certificate was provided, leading you to the pots and pans.

      I'd take it up with the hosting company. When I try to go to my site's virtual host using https: the server simply refuses the connection - not any HTTP response code, just refuses to even start the handshaking to establish a connection. As your friend's site only wants to be on http: that's what it should do.


        Cheers Nick. My site has the same problem as this other one is an add on domain to it. I shoulda known that was a mistake. Unfortunately I contacted the host "support" (hah, hah) and they said it must be an htaccess/coding problem.

        Pretty sure it ain't, I downloaded all my files in public_html and compared them with versions on my disc - nothing unexpected at all. Can't check her Wordpress stuff of course.

        Websniffer gives different results


        PPS Your comment is given credence by the fact that the website mine is redirecing to is also with the same host! I have submitted another ticket to support pointing that out.
        Last edited by xoggoth; 15 March 2013, 17:37.

        If everything isn't black and white, I say, 'Why the hell not?'
        John Wayne (My guru, not to be confused with my beloved prophet Jeremy Clarkson)


          Tor duckduckgo

          Provides a clean interface together with a no-tracking privacy policy. Offers keyboard shortcuts to navigate and zero-click information sources displayed in the


          Tor friendly

          Google,Facebook,Twitter are just Intelligence gathering portals for the Feds so why use them? With Tor you cannot access as they have blocked all the known nodes anyway.

          As more and more people become aware of privacy issues on the Internet they are going to start using this site.