• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

SSL

DRE

Well-known member
#1
What do you use it for? I bought it for my site to test out a Facebook App, which ain't working at the moment, what else can I use this for? I installed it in WHM and everything but other than the FB app I don't know what else to use it for.
 

DRE

Well-known member
#5
I use SSL 100% of my site. There is no reason not to these days, unless the cost is a problem for you.
I wanted to do so but I got the $5 SSL from Go Daddy because I'm using vanity urls with Better Blogs and that creates a bunch of subdomains. I would have to spend around $200 a year for SSL for subdomains.
 

Andy.N

Well-known member
#9
You should get class 2 which is $59 for 2 years and have wildcard domain so you can use it for your subdomains as well.
Isn't that cheaper than your "I would have to spend around $200 a year for SSL for subdomains."
 

DRE

Well-known member
#10
You should get class 2 which is $59 for 2 years and have wildcard domain so you can use it for your subdomains as well.
Isn't that cheaper than your "I would have to spend around $200 a year for SSL for subdomains."
What's this mean? [1] Wild Card capability supported with non-EV certificates (Class 3)
 

DRE

Well-known member
#11
So basically I should only use SSL for login pages and payment pages for Microcart.

If I do it site-wide it may slightly slow down the site since it's not being cached in SSL.

http://kb.iu.edu/data/alwg.html
http://stackoverflow.com/questions/3882080/why-should-i-use-ssl
http://stackoverflow.com/questions/2025012/ssl-how-and-when-to-use-it
http://stackoverflow.com/questions/2177159/should-all-sites-use-ssl-by-default
http://support.exware.com/ssl.html

Mike says I can use it on Xenforo period, instead of just logins and shop pages.

http://xenforo.com/community/threads/ssl-https-integration.1435/

Mike said:
With CPU speeds these days, SSL comes with minimal overhead. For what SSL protects against (man in the middle attacks), you really should retrieve every page over SSL. (See this article, where Tunisia is allegedly modifying pages on the fly to steal credentials.) XF shouldn't have any issues when using the whole site in SSL, though if you find a problem, please do report it.
Even Kier says it's okay to do it for the whole site.

When you are as enormous as Facebook, every tiny amount of processing power used to generate a page costs a fortune, so it makes sense for them to optimise as much as possible, which could be a reason for them to limit their use of SSL. However, for most of us, until you have tens of millions of daily visitors, SSL is a valid option.
 
Last edited:
#14
I dont get it. Why do you need a sign to show that people can trust you. That's like a criminal putting up a sign saying "I won't steal anything, just let me in".
 

Jeremy

Well-known member
#16
SSL is about encryption, not just that someone can be trusted. Although, it usually marks it as a 'trusted' source, it has nothing to do with that. On SSL, all communications to and from your site are encrypted.
 

DRE

Well-known member
#17
ahaha I just realized I explained SSL for protection against phishing and for the e-shop. I did not mention the Facebook App at all which was why I really wanted to get it in the first place. I done got off track...
 

DRE

Well-known member
#20
I demoted all my moderators (again) because I feel like if we're going to use SSL and an E-Shop, the site becomes more business-like and will not need more moderators, but something else entirely.