• Announcements
  • Promotions
  • Products and Services
  • Company News
  • Meet the Team
  • Security
July 12 2017

What Are Mixed Content Warnings?

PostedWednesday July 12th 2017

Last updated: May 2019

So you want to start handling transactional data on your website or perhaps want to improve your SEO with Google by installing an SSL Certificate. To achieve this, VentraIP Australia offers you two options; either a COMODO SSL Certificate which comes free with all our Web Hosting plans, or with a warranty-backed paid alternative from Trustwave.

A problem that can occur after installing an SSL Certificate is that you don’t see that much-wanted Green Padlock and the word ‘Secure’ in your toolbar. Instead, you see an exclamation mark and the words ‘Connection is Not Secure’ or a ‘Mixed Content’ warning. But you have an SSL certificate installed so the traffic between your server and browser should be being encrypted, right?

Well, it isn’t the server that is causing the problem, it’s your code. Browsers want to make sure they protect their users so when you visit a website that is using an SSL Certificate, the browser will happily use it for content that it’s sending to the visitor.

Why Is My Website Throwing This Error?

The short and sweet version for why your site is throwing this warning could be one of three reasons. Your site is encrypting some content but not all, somewhere in your code you are linking a resource that is being pulled over a non-secure connection, or the browser is trying to protect the visitor by letting them know that not everything from the website is being encrypted.

Let’s Look At A Real Life Example

Say your code is requesting an image from your server, but it’s requesting that image over a non-secured connection. The browser will throw a ‘Mixed-Content’ error, which means that some of the content is being encrypted and some isn’t. That’s because your blog posts and text are encrypted, but the image or resource being referenced isn’t.

In some cases, the browser may even block this content to protect the user which breaks websites because Javascript and CSS files are being blocked, so all the formatting you worked so hard on is destroyed and your site looks like a mess.

How Do We Know What Is Being Insecurely Loaded?

Your browser will typically tell you what is being insecurely loaded. You can access it through the following shortcuts:

Chrome: On Windows: F12 or Mac: Cmd + Opt + I
Firefox: On Windows: Ctrl + Shift + I or Mac: Cmd + Opt + I
Safari: On Windows: Ctrl + Shift + I or Mac: Cmd + Opt + I

How Do You Fix Mixed Content Warnings?

The resources listed in the console need to be called through HTTPS:// instead of HTTP://, though this is sometimes easier said than done. If you are using WordPress, consider using a popular plugin known as “Really Simple SSL”. This will do all the hard yards for you and as long as you have an SSL Certificate installed, will fix your mixed-content warning. If you aren’t sure how to edit your code, you will need to get in touch with a developer to perform this for you.

If you’re still unsure, our 100% Australian Technical Support staff are available 24/7 so feel free to lodge an eTicket so that they can investigate for you and let you know exactly what isn’t being loaded securely.

Share this article
Angelo is our CEO and one of VentraIP Australia's co-founders. His passion for the industry is only rivaled by his drive...
Who are VentraIP Australia?
VentraIP Australia is the largest privately owned web host and domain name registrar in Australia, backed by a team of industry veterans and local technical professionals.
View website