01-15-2015, 04:20 AM
Hi everyone!
SSL is very important for some applications:
First: there's the normal website with any kind of HTML form. If a user inputs something there (no matter if its a search form, contact, login, checkout or something else), he gets warning from his browser, if the data is sent without SSL. That can put many users off and you lose customers.
Second: there are APIs which require secure access to scripts on your webserver. Without SSL they will refuse working for you.
The following trick gives you a simple solution for an SSL certificate without having to self-sign it (which would cause the users' webbrowsers to give other warnings) and without your webhosting needing to have SSL enabled.
HOWEVER: What you do need is the ability to modify your domain's DNS records.
The trick is so simple, that it shouldn't even be allowed to be called a tutorial:
Just use Cloudflare:
Cloudflare is basically "inserted" (don't know a better word) between your server and the rest of the internet. It lowers your server load, enhances the loading time, makes your website more secure against hacking and......... it gives you SSL - even with the free plan.
This, however, will only encrypt traffic between your visitors' browsers and Cloudflare servers, NOT between Cloudflare servers and your server. So you should NOT use this to transfer really sensitive data (like credit card details). For a simple search, optin or contact form, this should be more than sufficient and won't scare your visitors away with warnings from their browser.
Hope this helps you!
SSL is very important for some applications:
First: there's the normal website with any kind of HTML form. If a user inputs something there (no matter if its a search form, contact, login, checkout or something else), he gets warning from his browser, if the data is sent without SSL. That can put many users off and you lose customers.
Second: there are APIs which require secure access to scripts on your webserver. Without SSL they will refuse working for you.
The following trick gives you a simple solution for an SSL certificate without having to self-sign it (which would cause the users' webbrowsers to give other warnings) and without your webhosting needing to have SSL enabled.
HOWEVER: What you do need is the ability to modify your domain's DNS records.
The trick is so simple, that it shouldn't even be allowed to be called a tutorial:
Just use Cloudflare:
Code:
http://www.cloudflare.comCloudflare is basically "inserted" (don't know a better word) between your server and the rest of the internet. It lowers your server load, enhances the loading time, makes your website more secure against hacking and......... it gives you SSL - even with the free plan.
This, however, will only encrypt traffic between your visitors' browsers and Cloudflare servers, NOT between Cloudflare servers and your server. So you should NOT use this to transfer really sensitive data (like credit card details). For a simple search, optin or contact form, this should be more than sufficient and won't scare your visitors away with warnings from their browser.
Hope this helps you!