OVH added free SSL certificates via Let’s Encrypt to all customers. All my subdomains are now reachable via HTTPS too. OVH did a great job but not told me that my homepage is now available via HTTPS. It was just an accident. HTTPS is pretty cool. Especially with a free valid non-self-signed certificate. I guess it’s a good approach to change all my profile pages on the web to direct link to https://fox21.at/. But a better to add a redirect rule to .htaccess to force the users to use HTTPS:
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule .* https://%{HTTP_HOST}%{REQUEST_URI} [last,redirect=301]
</IfModule>
If your website is also available through HTTPS consider forcing your users to use HTTPS only.
Now I need to move my blog again. Away from GitHub Pages. I believed that I would stay forever on GitHub Pages. They don’t support HTTPS for custom domains, yet. Maybe some day I’ll move back. But for now I want everything HTTPS. The blog repository will stay on GitHub.
So let’s encrypt the Internet.
