My account serves a number of domains for which I do not need or want to use encryption. Accordingly, in the control panel, all these websites are set as "Normal website (http)" and not "Encrypted website (https)".
When I visit http://<domain>.<tld> the sites work as expected, but when I visit https://<domain>.<tld> my browser warns of an untrusted connection (because webfaction's SSL certs obviously don't match my domains). I would have expected that the server simply doesn't respond to https requests to my domains, resulting in an 'unable to connect' message or similar in my browser.
(I first realised that this was an issue after Google Webmaster Tools warned that my sites didn't have valid SSL certificates.)
As far as understand this is a Webfaction issue, so how can I configure my sites so that they are not accessible via https?
asked Sep 18 '12 at 05:14
When you don't have an HTTPS site defined for a domain that's pointing to our server, our server would return a standard "Site not configured" page if that domain is accessed via HTTPS. Unfortunately this cannot be changed - we need to accept HTTPS connections since this is a shared hosting service, and other sites running on the same server might need to be accessible via HTTPS.
This shouldn't be a real issue, since your own site isn't actually accessible via HTTPS, instead a standard WebFaction "Site not configured" page is displayed.
If you have any further concerns, please let us know.
answered Sep 18 '12 at 07:24