Vesta Control Panel - Forum

This is a very annoying problem that going to drive me crazy!

About two weeks ago, I enabled HTTPS for my website, at that time, only links started with my domain use HTTPS. Other links, such as outgoing links on webpages or forum posts, uses http as how they were input.

Several days ago, I read an article about "get A+ rating in SSL test", it mentioned something about HSTS.

Then I edited my snginx.conf in VestaCP and added some code to force HSTS with a big max-age value.

Then I noticed that ALL links on my webpages turned to use HTTPS. Even those links I had input as http://blablabla in forum posts, even inside CODE bbcode, were then converted to HTTPS links after submitted.

I feel very sad, since most website of those outgoing links DO NOT use https, so that those converted links will result in error instead of opening that page.

I hate such a stupid conversion. so I dicided to disable HSTS. I deleted that code about HSTS in snginx.conf and restarted nginx.

But now, my Chrome browser still uses https for EVERY link on my webpages.

What is wrong? Did I missed something?

How to fix this?

Thank you!

baijianpeng wrote: Then I noticed that ALL links on my webpages turned to use HTTPS. Even those links I had input as http://blablabla in forum posts, even inside CODE bbcode, were then converted to HTTPS links after submitted.
...
But now, my Chrome browser still uses https for EVERY link on my webpages.

Web browsers too smart now. If you use https and then try http, smart browser try to use https.

baijianpeng wrote:What is wrong? Did I missed something? How to fix this?

It's nothing wrong about, but I think it'll be better use https and redirect all content - world trend, there is no escape.

No, you misunderstood me.

My own domain still uses HTTPS. I even used following code in .htaccess to force HTTPS for my own domain:
But, I don't want those links to other websites (out-going links) on my webpages be converted (automatically) to https ! Almost all of those out-going links were input as http (without s) , but now they were converted to https!

What had changed those out-going links?

baijianpeng wrote:

Code: Select all

RewriteCond %{SERVER_PORT} 80
RewriteRule ^(.*)$ https://www.joomlagate.com/$1 [L,R=301]

What had changed those out-going links?

Hmm... https?

DO YOU REALLY KNOW WHAT IS OUT-GOING LINKS?

baijianpeng wrote:DO YOU REALLY KNOW WHAT IS OUT-GOING LINKS?

Calm down, please, not all there SEO-guru.
Give some examples on pages, where you think something not right.

Ok, let me explain my issue:

My website was built with Joomla CMS. After I use that redirect rule in .htaccess, I understand that all links started with my OWN domain will use https.

But, those out-going links, such as software credit links at the bottom of a webpage, or links to other websites showing in forum posts, all these links were SURELY NOT https before. But now they all started with https.

Note: all those out-going links are NOT under my domain, but domains of other websites.

I don't know that had converted those out-going links to use https?

disable HSTS and clear your browser cache..

Thank you @lokali, yes, I forgot to clear the cache of Chrome, though I had already disabled HSTS on Nginx configuration.

Now after clear the browser cache, those out-going links returned to original HTTP urls.

PS:

I just feel very sad that why HSTS want to change links to other domains? I think they should just make sure that links/urls under my own domain use HTTPS.