Top 10 2000's Mario Songs

I know about https for securing important pages like login and such. But why would someone create a separate subdomain like wwws as well? for example

  • 2 what does this have to do with php?
  • When common non technical/internet people see 'www' in the URL it either makes them feel better or they think it has to be there. Have you ever tried telling a client to go to a and they don't get there because do Telling someone go to they will now leave out the extra www. That is just my theory from my experience.

There's no good reason to do this. Some marketing person probably suggested it.

In fact, it's a bad idea, because it teaches users to trust the host name and not the browser's security indicators (lock icon, etc.)

  • 1 @Paul Schreiber Can you explain how this could even benefit for marketing. I'm not getting the point at all why they did this.
  • 2 They are probably trying to sell an idea. That's what marketers do. The point @Paul is making is that wwws does absolutely nothing. It's just a name, like or or wwws is just another name, but it could make an amateur think the site is secure even if it isn't. http or https is what tells you whether the connection is secure.
  • @jmort253- more accurately, all http/https tells you is if the web server is running http or https, which may give you a better indication as to whether the connection is secure.
  • 2 If you have a separate server (or virtual site) for HTTPS traffic, assigning it to its own sub-domain isn't that uncommon. 'wwws' might just be a short - if vague - version of this practice.

I do this (though I usually use or similar) when I have separate content to serve. I.e., when and contain different things and/or have different restrictions on who (i.e., source IP address) can use them. If they're both serving the same content, then I'm not sure why you'd do this -- I don't see any benefit to it. I'd guess that it was done this way simply because the person who set it up didn't otherwise know how to configure both HTTP and HTTPS on the same domain in the same config.

  • 1 For the record, I think that's a very bad idea. Suppose your configuration got messed up and someone went to and your redirect to https failed?
  • 2 There is no non-SSL -- you're erroneously assuming there's a redirect. Regardless, your statement is a ridiculous argument, as you're implying that there's some other scenario which can't fall apart when its configuration gets screwed up.

HP used to do this, and they may still do it. This is how they load balanced their site. Each sub-domain could be associated with a separate IP address and upon logging into you would be redirected to one of ... etc I think there may have even been a time before CDN's came into their own, that Amazon did the same thing.

Sometimes this is due to poor application design, in which the server hosting website version1 is hosted at ( and then someone rewrites the website because your developer from Texas is now in jail (true story...) and because some XML-RPC logic buried in the pile of crap at is still needed we just redirect our users to ( where our new and improved site is that was developed by Brian the disgruntled ex Microsoft employee.

We aren't sure what will happen if we take down or move it or rename it, so we just leave it instead of migrating our 'good' website back to our primary domain.

  • 1 Whether or not this is the reasoning behind this occurrence, I would like to think that a criminal conviction is often the motivation behind naming schemes. :D

none: Charles Robertson | none