1. Plugins(like Really Simple SSL)
   
2. .htaccess file redirect
   

(08-02-2019, 01:12 PM)SRTerabytes Wrote: If I had to be stuck with Apache then I'd go with the .htaccess file redirect method because I like to not rely on plugins as much as possible so you don't have to keep them updated.

As for what this is for, SSL certificates are really nice to have and you can now get them for free with Let's Encrypt. I recommend anyone reading this with a domain and a VPS to learn how to use Let's Encrypt if you can't afford it from those who sell it to have a free SSL certificate for HTTPS that auto renews after several months. There's already a tutorial for that on this forum.

(08-02-2019, 05:23 PM)Hidden Refuge Wrote: I would always prefer and always recommend to use the redirection method that the web server provides. May it be .htaccess, other similar configuration files or direct entries in the vHost (like nginx does it). This way you get redirected to the HTTPS version of the site BEFORE you load any content on the site. This leaves no time or space to possibly load something via an unsecured connection (if all resources on the site are loaded over and support HTTPS).

Using a solution within the software you host can possibly be insecure by having security flaws in that software that can exploit the redirection feature to load malicious code on the client side browser.

My two cents. I'm using Nginx now for over 5 years and love it.

(08-03-2019, 09:41 PM)Kururin Wrote: Web server, not even .htaccess. I think apache2 shouldn't be used anymore as the way it eats memory like a monster. Nginx is always better and lightweight in my opinion and the configuration is simple as well. As for the topic I would like to say configuration side is much better to me than some plugin that I don't know what it does. I rather hand-tune my website than let some plugin do it.