Skip to main content

Google bolsters encryption for Blogspot domain residents with HTTPS rollout

Google software engineer Milinda Perera said this week that the company is now rolling out an HTTPS version of every single blog stored away on the Blogspot domain. That means visitors can load up their favorite blog on this specific domain over an encrypted channel, preventing eavesdropping snoops from seeing what they’re actually accessing. Even more, there’s nothing to enable: all Blogspot domain residents automatically have the HTTPS version switched on.

But of course, there’s a catch. Blogs with mixed content may not work correctly on the HTTPS version. According to Perera, this is caused by several factors: post content, incompatible templates, or gadgets. To help authors weed out the problematic elements, Google is offering a mixed content warning tool to help fix the issues manually. Perera said that Google is proactively fixing most of the errors it comes across.

Recommended Videos

Another catch is that Blogspot posts published on custom domains currently do not have HTTPS support. For those who are unaware, Google bloggers can actually publish their content on a top-level domain (www.mydomain.com) or a subdomain (myblog.mydomain.com). This can be accomplished by clicking on “Basic” under the blog’s “Settings” tab, and then adding the custom domain address in the “Publishing” section. While supporting HTTPS is presumably possible, it may be some time before Google tackles this specific feature.

Outside of those two setbacks, the HTTPS versions won’t screw up existing links and bookmarks stored on the blog entries. The company has also injected Blogspot with a new HTTPS Redirect setting that allows authors to provide access to either one version of the blog (on = HTTPS), or two versions of the blog (off = HTTPS and HTTP). Note that with the setting turned off, visitors will have access to the blog on an unencrypted connection.

So what’s the big deal about HTTPS? It’s an internet protocol that secures the connection between a device application (email app, browser, etc), and a website or service. This not only keeps data safe and secure from prying eyes as it speeds across the virtual highways, but protects the user’s privacy in the process. Websites with the vanilla HTTP protocol do not offer this type of security.

Google’s move to secure all Blogspot residents is part of the overall HTTPS Everywhere initiative. While there are many sites that offer HTTPS security, a good chunk of the internet does not. And as the Electronic Frontier Foundation (EFF) points out, many encrypted pages may still contain links that direct users back to the unencrypted version. Third-party content mayalso  not be encrypted through links on an HTTPS-based site.

To that end, the EFF teamed up with Google, Mozilla, and Opera to create an extension that encrypts the Internet surfer’s communications with a number of major websites. The extension is offered for the Chrome, Firefox, Firefox for Android, and Opera browsers.

Google started testing the HTTPS waters with the Blogspot domain back in September 2015 as an opt-in feature. The company actually began encrypting its services in 2008, securing Search, Gmail, Drive, and other services throughout the years. Google said that some of the benefits to HTTPS encryption include preventing visitors from being redirected to a malicious site, preventing changes to data exchanged between the Blogspot domain and the visitor, and so on.

That said, Google is now officially rolling out HTTPS encryption to all Blogspot residents, not just with volunteers, as seen in September. The company encourages its bloggers to provide feedback so that it can make improvements.

Kevin Parrish
Kevin started taking PCs apart in the 90s when Quake was on the way and his PC lacked the required components. Since then…
Google lead says he’s ‘disappointed’ with Apple’s new iPhone security program
iPhone 11 Pro feature image

Apple’s new hacker-friendly iPhones offer security researchers unrestricted access to devices so that they can easily hunt down vulnerabilities and bugs. But Ben Hawkes, technical lead at Project Zero, a team at Google tasked with discovering security flaws, says he’s “pretty disappointed” with Apple’s latest security program.

Hawkes, in a Twitter thread, said that its team won’t be able to take advantage of Apple’s “Security Research Device” (SRD) iPhones since it appears to exclude security groups that have a policy to publish their findings in three months.

Read more
Upgrade to the Alienware 18 Area-51 gaming laptop with RTX 5070 Ti — $500 off!
The Alienware 18 Area-51 Gaming Laptop on a white background.

You should be ready to spend a lot if you want a powerful gaming laptop, but you should also be on the lookout for potential savings. Now's a great time to check out Alienware deals because of Dell's Black Friday in July sale, which includes a fantastic offer for the Alienware 18 Area-51 gaming laptop. This configuration with the Nvidia GeForce RTX 5070 Ti graphics card is down from $3,300 to $2,800, which is still expensive, but you wouldn't want to miss this chance at $500 in savings. You have to hurry though, as stocks may run out at any moment!

Buy Now

Read more
Save $100 on our pick for the best printer
HP includes full ink bottles with the Smart Tank 7602.

What do we need to print these days? Tax forms, student essays, and clearly-legible letters? Not so much. Bright invites, pictures, and presentation accompaniments? Yes, yes, and yes! In today's world, the typical person's needs in an inkjet printer are far different than the last time you were likely to have bought a printer. And the industry is catching up. Right now, our pick for the overall best printer of 2025 is $100 off as part of early Prime Day deals. That makes the $450 printer just $350 if you buy now. Plus, it comes with two years of HP's ink included. So, tap the button below to go check out the HP Smart Tank 7602 for yourself or keep reading to see what we like about it and what we found out during our review.

BUY NOW

Read more