I’ve started looking at installing SSL for one of my projects. I must admit that I am more confused now than when I started (too many possibilities).
All I want is:
a) protect my login system (no cc business, just encrypt pwd).
b) my users don’t have to accepts a certificate, click on stuff to access my website. There’s just the https://. Boom.
Following up on l_e’s post, you can self-sign a cert (if your login members don’t care about “approved” certificates) and there are many tutorials on that. It’s probably a bit easier to do it with cPanel (actually, WHM) but you can also install a secure server (certificate) with direct access to your VPS.
As I said, I don’t want users to click on alert messages when accessing my site. So the certificate has to be trusted by browsers. I don’t think it’s the case with self-signed certificates, am I correct?
Here again, I have a hard time figuring out which option suits best my need. As I said:
I want an https:// protocol without the user having to click on anything.
I need subdomains to be covered as well.
Would SSL123 Certificates be enough? What are exactly the advantages of SSL Web Server Certificates beside being usable over more than one domain (is it like having four certificates for the price of one)?
Thawte certificates are good but the ones on your linked page are unrealistically expensive. Do a search for Certificate Authority and look at the various CAs products. If all you want is something which will not trigger a warning, just get the cheapest one you can find (from a reputable CA).
If you have a good host, they’ll often act as agents for CAs and offer very inexpensive certs - in the under $50 range!
There ARE less expensive CA’s than Thawte and many agents (subcontractors, if you will) who will discount based on multiple sales for the CA.
Your OpenSSL “solution” is not a solution at all. It allows your server to have an SSL cert but you’ve still got to install the cert. If it’s self-signed, it’ll throw a warning (because browsers will not recognize the CA) so you’re back at actually searching for SSLs at a reasonable price. If you still have problems, I’d been a reseller a few years ago (for my clients, of course) but may be able to re-start something for you. I’d have to add-on the cost of my time and effort, though, so you’d be better off using a search engine to find inexpensive CAs.
If it is not, I will post again. I’ll try to find something that at a reasonable price (any recommendations?). If I’m stuck, I’ll ask you to do the job (through the market place, obviously ;))