Full site SSL is now a ranking factor

[Dh42]

Google has officially annouced they are using full site SSL as a ranking factor now. Prestashop is ahead of the curve on this one, http://googlewebmastercentral.blogspot.com/2014/08/https-as-ranking-signal.html

[El Patron]

I would like to dust off this old 'tip' about https and performance consideration with SSL.

http://www.prestashop.com/forums/topic/162017-tip-performance-https-and-keep-alive-connections-persistant-connections/

[Dh42]

Great tip, thanks! 

[the.rampage.rado]

OK, how to be sure we will not be kicked in the ..... by google for clicking "Force the SSL on all the pages

"

 

 

Because I'm quite sure that when I got SSL on my website (login page and stuff like that only) my ranking dropped like a stone.

 

What to check if I did it right, so I can run all my site from SSL?

[El Patron]

 

OK, how to be sure we will not be kicked in the ..... by google for clicking "Force the SSL on all the pages

"

 

 

Because I'm quite sure that when I got SSL on my website (login page and stuff like that only) my ranking dropped like a stone.

 

What to check if I did it right, so I can run all my site from SSL?

 

 

book I just bought for my kindle on amazon:  I am logged in. (http)

 

http://www.amazon.com/Whiskey-Tango-Foxtrot-David-Shafer-ebook/dp/B00H25FFGU/ref=sr_1_1?s=digital-text&ie=UTF8&qid=1407442221&sr=1-1&keywords=whiskey+tango+foxtrot

 

It's always a good idea to see what the 'big shops' are doing especially since they know what they are doing.

 

I think this is less weighed now than it will be in the future, simply to give people time but we should all do 'what google say do'.

 

If a shop has poor performance as a result of SSL, you can rest assured your SEO will take a significant drop.  It's all about user experience these days, good content and a fast above the fold render. 

 

suerte (luck)

[saranrajj]

Yup, After months of speculation, Google announced that they would be giving preference to secure sites. Lets see how it reflects.

[Mister Denial]

Since most shops are "heavy" when it comes to the number of objects, especially images, it might be a good time to switch to NGINX and SPDY - more simultaneous connections, and everything in HTTPS.

 

What do you think?

[Dh42]

I am not too big of a fan of NGINX personally. mod_spdy on the other hand I really like it. It pretty much sheds all of the overhead that traditional ssl has. For ease and cost I would recommend installing mod_spdy, then just using a cdn like MaxCDN which uses mod_spdy already.

[Mister Denial]

Hi Lesley,

 

really, you can run SPDY under Apache? I was under the impression that it only did work with NGINX. Interesting. Because that was actually what was holding me back, as I am not familiar at all with NGINX. I will definitely have to look into this.

 

Does mod_spdy offer the same compression advantages and multiple connections that the NGINX / SPDY combo does?

 

If yes, I just got a new n°1 item on my To Do list.

[Dh42]

I have it installed on a couple of projects, yes. Here is the home page for the project, https://code.google.com/p/mod-spdy/  it is an apache 2.2 extension. You have to use it with a thread safe php interpreter like fcgi, it won't work with mod_php. But you should already be using fcgi anyways. 

 

As for compression, apache does not cache like NGINX does, but at the same time, if you are using a cdn then the caching is useless, because you have to allow html files in NGINX for Prestashop to work properly. SO you really are not serving any cached resources from your server any ways. 

[Mister Denial]

This is really cool, I will need to dig into this deeper ASAP and see how I can implement it. I am not using a CDN right now, for budget reasons among other things, but also because I've read lots of mixed reviews about PS and CDN, that CDN's don't really add that much performance or even the opposite, made the website slower, so as a small business I never made the investment.

 

If you were not able to use a CDN for a website, would you still go with fcgi / mod_spdy and force SSL in Prestashop?

[Dh42]

Oh, I always run fcgi on the servers I set up. I use apc a lot and they work great together. I haven't really ever heard a bad review about using a cdn with PrestaShop. I generally recommend MaxCDN because you can get an account for around $7 a month if you use a coupon. Not too expensive. 

 

As for the last question, sure. I am in the process of getting everything converted over to using ssl, it is just taking a bit of time because I just 301'd my subdomains to sub directories. So I am waiting for the SEO implications to run their course. Then I am going to convert everything over to ssl all the time. 

[Mister Denial]

Thanks for the feedback, and also the info on MaxCDN, I will have a look at their website and offer and but it on my reminder list of things to consider in the near future. 7 Dollars is indeed affordable.

[Dh42]

One thing I forgot to mention since the topic we are in, I am pretty sure they offer a generic ssl certificate with their service like yoursite.net-dna.com/img/file.jpg There is a big charge if you want to run it like cdn.yoursite.com/img... and it be ssl. I think you have to either buy a cert for them or get one installed that you buy. but if you are not using full time ssl you can just cname to cdn.yoursite.com for no charge. 

[Mister Denial]

Thanks for the update, I'll keep that in mind. I'll have to see how / if / when I move to full SSL or not. Like you said, there is a big charge for having your own SSL, it bumps up the pricing by $39 / month.

[mr913]

I enabled the SSL option in the BO about 1 month ago... on the 22nd google webmaster tools shows the first crawl of the https site and my rankings went from 2nd to 3rd result to 5th to 6th page, and sometimes my site doesn't even show up for keywords I once was very well positioned for. Nothing else has changed. 

Any advice? Should I undo it? or wait for the results to come back? Did I get sandboxed?

Sooo stressed out about this... Any advice would be great. 

Thanks!

[Mallee Boy]

Hey, send me your url and I will take a look. The fix may be easier than you think.

[Hemanth Malli]

Google has officially annouced they are using full site SSL as a ranking factor now. Prestashop is ahead of the curve on this one, http://googlewebmastercentral.blogspot.com/2014/08/https-as-ranking-signal.html

Hi,

 

Ya it's true, and it is having 1% of effect on ranking.

[mr913]

How does Prestashop make the change when you click "force SSL on all pages"? 

In my research I'm finding the HTTP to HTTPS redirect (301?) is super important. When I look at my .htaccess file, I don't see any reference to a 301 redirect to create the HTTP to HTTPS change. 

Should I add this as a separate line in my .htaccess file? 

My rankings are still suffering drastically from the https change over. I'm still hoping it comes back, but about to pull the plug on the https and go back to http (but then, I'd still have to wait again...)

Anyways, thoughts on where to look to find out how prestashop does the HTTP to HTTPS forced change would be appreciated.

Thanks!