Results 1 to 14 of 14
  1. #1

    Cheapest SSL meeting these specs:

    Hello,
    I asked my hosting provider and he said that he can install chained root SSLs.
    My requirements are:
    * 128 encryption
    *At least IE 6 100% compatibility.
    *No security alerts when clients request the https site (ex. The security certificate was issued by a company you have not chosen to trust OR The name on the security certificate is invalid)
    *The locker to appear on the status bar of the browser when client enters the https zone.

    Regards,
    Rocco.

  2. #2
    Join Date
    Mar 2003
    Location
    Canada
    Posts
    8,910
    StarterSSL (RapidSSL) meets all of those requirements with 256 bit encryption.

    http://www.namecheap.com has them on sale for $13.98/year.
    Patrick William | RACK911 Labs | Software Security Auditing
    400+ Vulnerabilities Found - Quote @ https://www.RACK911Labs.com

    www.HostingSecList.com - Security notices for the hosting community.

  3. #3
    Hi again,

    *Are there any conflicts with php, perl, or any other scripts?
    *Is this enough for installing?: rapidssl.com/ssl-certificate-support/install-ssl-certificate/cpanel.htm
    * Do I need a dedicated IP?
    * Any other advise, warnings or recomendations?

    Regards,
    Rocco.

  4. #4
    Join Date
    Jan 2004
    Posts
    593
    It is possible that your scripts are not 100% compatible with SSL. Most are, but if not, it usually is an easy fix.

    If you purchase from Rapidssl or any other provider, they will give you instructions on how to install the cert. If you don't have root, then ask your provider to install the cert for you.

    Yes, you need at least 1 dedicated IP.

    Don't purchase the certificate for www.yourdomain.com
    Instead purchase the certificate for yourdomain.com
    The problem that people run into is that those 2 domains are NOT the same and that is how many people see those security windows on if they want to accept the certificate. Make all links for your site require the www. or not require the www.
    Check out my new Chrome Extension - Server Admin Tool
    frustratedtech.com - Helpful Server Tech Advice

  5. #5
    So,
    If I purchase the certificate for mydomain.com will any alert popup when visitor enters address wwwmydomain.com in his browser?

  6. #6
    Join Date
    Jan 2004
    Posts
    593
    Yes, the server sees www.mydomain.com as having the subdomain of www which could possibly be an account completely separate from mydomain.com.

    If you purchase for mydomain.com then make sure all links do not include www.
    Check out my new Chrome Extension - Server Admin Tool
    frustratedtech.com - Helpful Server Tech Advice

  7. #7
    The domain name must match exactly the one on your certificate. If you intend to use www.mydomain.com, be sure to use "www.mydomain.com".

  8. #8
    If I change IP will my cert be valid?

  9. #9
    Join Date
    Jan 2004
    Posts
    593
    you will need to reinstall the cert. You can move the cert to any IP at any time.
    Check out my new Chrome Extension - Server Admin Tool
    frustratedtech.com - Helpful Server Tech Advice

  10. #10
    um if you have cpanel you can generate an ssl certificate that i think is 256 bit encryption - that does not cost you any money.

  11. #11
    Join Date
    Oct 2003
    Location
    Scotland, UK
    Posts
    2,900
    Quote Originally Posted by VDRS Host
    um if you have cpanel you can generate an ssl certificate that i think is 256 bit encryption - that does not cost you any money.
    That would be self-signed though, so users would get a popup error
    Alasdair

  12. #12
    Join Date
    May 2005
    Location
    Portland, OR
    Posts
    28
    It can often help to have a secure subdomain, ie secure.domain.example instead of having the cert on the root domain. That way, programs or people who add www. to the root domain won't experience issues when they're directed over to your secure section.
    VibrantLogic Hosting - Dedicated and Colo Solutions
    sales [at] vibrantlogic.com

  13. #13
    Well my friend Pat H, I went on and bought RapidSSL from namechep.
    Now when I https to the site it gives me an alert: 'The security certificate was issued by a company you have chosen not to trust..."
    What went wrong?

    Rocco

  14. #14
    It is also a 128bit. Where did you hear about 256?!

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •