• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Resolved some of my sites are shown not secure

elaa

elaa

Basic Pleskian
hi I have 2 sites with the certificate installed using let's encrypt but some of my clients are telling me that they got the not secure sign also McAfee are shown that they are risky but my browser is not shown any sign why is that and how can I fix it
 
Have you enabled "Permanent SEO-safe 301 redirect from HTTP to HTTPS" in "Hosting Settings" of your domains?
 
yes I did both are enabled
SSL/TLS support
Permanent SEO-safe 301 redirect from HTTP to HTTPS with let's encrypt
 
What exactly is in the report from McAfee that says your website is not secure? Does it mention something like lack of (or weak) encryption or malware?
 
one of then sais:
Slightly risky
About this site
Website category:
  • Internet Services
  • PUPs
and the other sais :
Very risky
About this site
Website category:

  • Malicious Sites
 
OK, so certain security websites think that your websites are malicious. Maybe those are false-positives but it could also be the case that your websites were compromised or that your domain has a bad reputation.

I'd suggest you scan your websites using tools like this:
How to scan a website hosted in Plesk against malware
Sucuri Security
Google Transparency Report
VirusTotal

If there's any malicious content reported, you should check the following pages for information how to deal with it:
Hidden Threats: How to deal with Website Malware
Help – My Plesk server was hacked!
What to do if Plesk server was hacked?
 
You must log in or register to reply here.

Similar threads

S
Issue Let's Encrypt/SSL It! empty domain name error
Replies
8
Views
1K
SilentWarrior
S
M
Issue Let's Encrypt Bulk Domain Renewal
Replies
4
Views
538
MacGyver
M
J
Issue Let's encrypt for Plesk cannot be renewed status 500
Replies
1
Views
1K
Sebahat.hadzhi
Sebahat.hadzhi
A
Question secure mail.[domainname].xx with SSL
Replies
0
Views
853
Albertje
A
H
Resolved Problem with install Let's Encrypt SSL/TLS certificate
Replies
6
Views
2K
HungLuu
H
Back
Top