SSL

DRE

DRE

Well-known member
What do you use it for? I bought it for my site to test out a Facebook App, which ain't working at the moment, what else can I use this for? I installed it in WHM and everything but other than the FB app I don't know what else to use it for.
 
Andy.N said:
I use SSL 100% of my site. There is no reason not to these days, unless the cost is a problem for you.
Click to expand...
I wanted to do so but I got the $5 SSL from Go Daddy because I'm using vanity urls with Better Blogs and that creates a bunch of subdomains. I would have to spend around $200 a year for SSL for subdomains.
 
You should get class 2 which is $59 for 2 years and have wildcard domain so you can use it for your subdomains as well.
Isn't that cheaper than your "I would have to spend around $200 a year for SSL for subdomains."
 
Andy.N said:
You should get class 2 which is $59 for 2 years and have wildcard domain so you can use it for your subdomains as well.
Isn't that cheaper than your "I would have to spend around $200 a year for SSL for subdomains."
Click to expand...
What's this mean? [1] Wild Card capability supported with non-EV certificates (Class 3)
 
So basically I should only use SSL for login pages and payment pages for Microcart.

If I do it site-wide it may slightly slow down the site since it's not being cached in SSL.

http://kb.iu.edu/data/alwg.html
http://stackoverflow.com/questions/3882080/why-should-i-use-ssl
http://stackoverflow.com/questions/2025012/ssl-how-and-when-to-use-it
http://stackoverflow.com/questions/2177159/should-all-sites-use-ssl-by-default
http://support.exware.com/ssl.html

Mike says I can use it on Xenforo period, instead of just logins and shop pages.

http://xenforo.com/community/threads/ssl-https-integration.1435/

Mike said:
With CPU speeds these days, SSL comes with minimal overhead. For what SSL protects against (man in the middle attacks), you really should retrieve every page over SSL. (See this article, where Tunisia is allegedly modifying pages on the fly to steal credentials.) XF shouldn't have any issues when using the whole site in SSL, though if you find a problem, please do report it.
Click to expand...

Even Kier says it's okay to do it for the whole site.

Kier said:
When you are as enormous as Facebook, every tiny amount of processing power used to generate a page costs a fortune, so it makes sense for them to optimise as much as possible, which could be a reason for them to limit their use of SSL. However, for most of us, until you have tens of millions of daily visitors, SSL is a valid option.
Click to expand...
 
Last edited:
I dont get it. Why do you need a sign to show that people can trust you. That's like a criminal putting up a sign saying "I won't steal anything, just let me in".
 
SSL is about encryption, not just that someone can be trusted. Although, it usually marks it as a 'trusted' source, it has nothing to do with that. On SSL, all communications to and from your site are encrypted.
 
ahaha I just realized I explained SSL for protection against phishing and for the e-shop. I did not mention the Facebook App at all which was why I really wanted to get it in the first place. I done got off track...
 
I demoted all my moderators (again) because I feel like if we're going to use SSL and an E-Shop, the site becomes more business-like and will not need more moderators, but something else entirely.
 

Similar threads

Mr. Jinx
Incorrect phrasing of mail encryption
Replies
1
Views
215
Kirby
K
L
  • Question Question
XF 2.2 XenForo upgrade check failed: cURL error 60: SSL certificate problem
Replies
3
Views
306
louisl
L
findozor
  • Question Question
XF 2.2 ErrorException: Job XF:EmailUnsubscribe: [E_WARNING] stream_socket_enable_crypto(): SSL operation failed with code 1. OpenSSL Error messages: error:0A
Replies
2
Views
287
findozor
findozor
IcEWoLF
  • Question Question
XF 2.2: When I enable SSL the board stops working properly
Replies
4
Views
402
IcEWoLF
IcEWoLF
ActorMike
SMTP Session is closed after each recipient over SSL
Replies
0
Views
419
ActorMike
ActorMike
Top Bottom