Free SSL Certificate
-
@JaredBusch said:
@scottalanmiller said:
@RamblingBiped said:
I've read/heard https://letsencrypt.org/ is the place to go nowadays. I've not personally used them and would be keen to know what opinions others have.
This is definitely who you want to be using.
I disagree with this. I would say it will be who you want to be using. The project just came out into beta and is working good, but it is still in fairly early beta stages IMO. I have been following it and keeping up with it. My personal domains are all using it.
I highly recommend, and use myself, StartSSL right now for free 1 year certs.
Ditto on startssl.com, same thing that we currently use.
-
@Breffni-Potter SSL warranties are useless.
-
@IRJ said:
My current site doesn't have SSL because I only accept paypal which redirects to SSL anyway. However I am trying to setup a shop on our facebook page and facebook requires SSL.
Then just go get a basic SSL cert from StartSSL. You can always get a greenbar later if you want it. Assuming you get it from a different company, it would not even invalidate the StartSSL cert.
-
@IRJ said:
I have an ecommerce store. Do you think I should get a greenbar cert?
How technical are your users? Non-technical users love the greenbar.
-
@aaronstuder said:
@IRJ said:
I have an ecommerce store. Do you think I should get a greenbar cert?
How technical are your users? Non-technical users love the greenbar.
Not very
-
I completely forget that cloudflare offered a SSL Cert. I already set it up and it's working good.
-
This post is deleted! -
@IRJ Are you using Flexible SSL?
Remember that Flexible SSL does not protect data all the way to your server.
-
@aaronstuder said:
@Breffni-Potter SSL warranties are useless.
Some believe they are gold-dust, that's why they are still selling.
-
@JaredBusch said:
@Breffni-Potter said:
The leap between green bar and padlock is the warranty you get if the certificate is compromised.
It is more than that. It is also the fact that things were verified about your business really being your business.
I thought organisation validation did the same thing though? EV bar just displays the same name that an organisation validation cert displays in the details when you click into it?
-
@Breffni-Potter that's correct!
-
@aaronstuder said:
@IRJ Are you using Flexible SSL?
Remember that Flexible SSL does not protect data all the way to your server.
It worked for making a facebook store which is all I care about. Payments are routed through PayPal's site anyway so I am not worried about. 90% of our users use facebook login to authenticate so we dont store many credentials.
-
I recently learned, that for companies like CloudFlare to provide full on secure access as you, they have to be allowed to create certs in your name. I'm not sure how I feel about this, but there are definitely ubber concerned people who won't allow certificates like this to leave their own control.
