While letsencrypt.org is still in beta phase, is StartSSL still the best option out here?
#supercurioBlog #web #security #encryption
Let’s Encrypt
Let’s Encrypt is a free, automated, and open certificate authority brought to you by the Internet Security Research Group (ISRG). ISRG is a California public benefit corporation, and is recognized by the IRS as a tax-exempt organization under Section 501(c)(3) of the Internal Revenue Code.
/sub
I don't know how it compares to StartSSL but there's UniversalSSL from CloudFlare.
Honestly… the bare minimum I'll use is the cheap cert from namecheap.
+James Carroll That's a valid option to protect partially the privacy of a blog's readers. Like from Verizon's supercookie.
However in my case I'd like to protect the login and admin pages of a +WordPress as well and it can do that only on the client's side. Surveillance or password sniffing between +CloudFlare and the real server are still possible
After StartSSL said that putting a cert on my servers admin pages for private use was "business use" I went with the cheapest option from Namecheap. Only 9USD for the year.
Any recommendations for a WP blog hosted with hosting company? It's a small local company.
+François Simond you can use a self signed certificate between you and cloud flare.
+Ryan Cullen oh I see, shenanigans!
+Joel Teichroeb I missed that, clever 🙂
+François Simond yeah, StartSSL are somewhat problematic with their free tiers (only for noncommercial uses), and paid tiers can be a pain to setup.
Good that letsencrypt is coming to the party soon.
Could you describe this +Joel Teichroeb ? Thanks !
+Sebastian K https://www.cloudflare.com/ssl the Full SSL works with a self signed and is available on the free plans.
I activated Flexible SSL with +CloudFlare for now, it's works well with +WordPress – after installing a plugin that prevents a few specific issues.
I'll try Full with self-signed certificate later 🙂
And I also added an automatic redirection to HTTPS with +CloudFlare page rule, as +WordPress plugins to do that get confused because it's HTTP on the server:
https://support.cloudflare.com/hc/en-us/articles/200170536-How-do-I-redirect-all-visitors-to-HTTPS-SSL-
http://supercur.io/blog/tag/color is redirected to HTTPS 🙂
Thanks for sharing !
So now one question arises to me: Right now, my domainprovider redirects connections to my page "https://cloud.sebastiankostka.de" to my local homeserver. The SSL-Certificate i use is from StartSSL (https://www.startssl.com).
My Question now is: Would it be "more" secure to use a selfsigned certificate along with the CloudFlare Proxy ?
+Sebastian K simple answer: no 🙂