SSL certificates are increasingly essential for today's internet. They provide assurance that the data passing between your website and people visiting your site is encrypted and secure. Google thinks it's so important that last week's update to their Chrome browser (v56) started marking pages that were insecure and Google's search engine will rank pages higher that are secure behind https:// and that little padlock.
For a while now we've been rolling out a feature on our shared hosting servers that enabled https:// on your websites. Our "AutoSSL" feature provides you with totally free SSL certificates from "Let's Encrypt". These are domain-validated certificates with a 90 day lifespan. And when those 90 days are up, AutoSSL installs a new SSL certificate so you don't have to mess about with complex certificate signing requests and installs.
AutoSSL is now enabled on all our shared hosting servers.
Q & A
- They're FREE?
Yes, totally. We think moving to an internet where it's more secure is important.
- What about my subdomains? Addon domains? Webmail? eMail?
Yes, those are secured too. AutoSSL will automatically install up to 200 certificates.
- But I've already got an SSL certificate?
We will not override existing non-AutoSSL certificates nor will we install a certificate if your existing certificate lapses.
- Do I still need to buy a certificate?
Possibly. The certificates from Let's Encrypt are simple single domain certificates. Unlike our paid certificates they carry no warranty. They're perfect for regular sites that don't have ecommerce facilities but may still have user logins or forms that would benefit from encrypted form data. The more advanced certificates we provide from GeoTrust or GlobalSign provide warranty, have greater awareness with web users, greater mobile device coverage and last for at least 12 months.
- Who are "Let's Encrypt"?
Let’s Encrypt is a free, automated, and open certificate authority (CA), run for the public’s benefit. It is a service provided by the Internet Security Research Group (ISRG). You can read more about it at https://letsencrypt.org
- How do I enable https:// on my site?
If your site is just plain HTML, you're already done. If you're running something like Wordpress, Joomla, Drupal or forum software, usually you have to change a setting in your admin settings for the site to get everything using https://
If you're still seeing a warning, check out https://www.whynopadlock.com which will tell you why.
We hope AutoSSL is useful and will make the internet a safer place for you and your website visitors.
Monday, January 30, 2017