Any cheap SSL offers?

[Apn73]

I'm resurrecting some websites of mine which I already have the domain names for and trying to decide on a host; presumably it's a good idea to have SSL? The hosts all have special offers but seem to sting with the SSL fees – do you know of any SSL special offers? Thanks for any help!

 

[fisicx]

Most decent hosts give you an ssl for free. When I set up a new domain it’s automatically https. Don’t even need to think about the ssl.

 

[Apn73]

Most decent hosts give you an ssl for free. When I set up a new domain it’s automatically https. Don’t even need to think about the ssl.

Looking at www.namecheap.com/hosting/shared/ it's free for the first year then according to www.namecheap.com/hosting/shared/ gives the cheapest "great for business" plan as £17.48pa and that only does 1 domain.

 

[fisicx]

Looking at www.namecheap.com/hosting/shared/ it's free for the first year then according to www.namecheap.com/hosting/shared/ gives the cheapest "great for business" plan as £17.48pa and that only does 1 domain.

Namecheap is a bit of a clue as to why. Pay a little more for hosting and you won’t be crammed onto a shared server , you will get a free SSL and much better support.

 

[Marbman]

An SSL always comes free as standard with my hosting and I imagine with most other companies too. Back in the day it was a bit of a pain sorting one out but to be honest back then it was not so critical to have https, so often I did not bother but this last part is just fluff and adds nothing to this conversation.

 

[Hooble]

There is two options in regards to this, you can either use the Free SSL most hosts will provide you with. If you are processing any kind information or have an e-commerce store then you will want one with a warranty. We offer single domain certificates at £9.99+VAT per year and wildcard certificates for £99.99+VAT as an example.

 

[Uwe (Invoiceberry)]

Let's Encrypt is completely free.

 

[danishnaseer]

I'm resurrecting some websites of mine which I already have the domain names for and trying to decide on a host; presumably it's a good idea to have SSL? The hosts all have special offers but seem to sting with the SSL fees – do you know of any SSL special offers? Thanks for any help!

Use the Let's Encrypt SSL, it is free and secure. Most of the hosting provider give free SSL

 

[Paul Kelly ICHYB]

I offer a free SSL cert to my startup clients - it is a hosting feature of the package that manages the server!

However, remember, if you are building a e-commerce system, whilst this is fine to run a small system, it is recommended that you get a stronger cert and exclusive IP address if growing something big.

BTW, if you don't have an SSL cert, Google penalises you hard!

 

[Kerwin]

I offer a free SSL cert to my startup clients - it is a hosting feature of the package that manages the server!

However, remember, if you are building a e-commerce system, whilst this is fine to run a small system, it is recommended that you get a stronger cert and exclusive IP address if growing something big.

BTW, if you don't have an SSL cert, Google penalises you hard!

Not sure I agree with this statement.

All SSL/TLS certificates can be the maximum strength. The cost has nothing to do with it. For instance, Let's Encrypt offers free SSL/TLS certificates, but they are at full strength of 4096-bit RSA certificates.

In the past, it was true that the more you spent, the more secure the certificate was, as SSL/TLS providers would offer 2048-bit or even 1024-bit certificates for their cheap options. This is no longer the case.

As for the IP address, it isn't a massive deal. All search engines know that websites can be hosted on shared hosting; thus, more than one website can be on the same IP address. But, if you have an SSL/TLS certificate, you need a dedicated IPv4 and IPv6 address. I recommend using both IPv4 and IPv6 for all websites you deploy now. IPv4 address depletion is a real problem; at some point, everyone will need to switch to IPv6.

 

[KM-Tiger]

But, if you have an SSL/TLS certificate, you need a dedicated IPv4 and IPv6 address.

That's not actually true any more.

It used to be true that you needed a dedicated IP address to use an SSL cert. That was because the SSL handshake/setup was taking place before the client device said what website it was wanting.

That was a problem looking for a workaround and to that end SNI (Server Name Indication) extension was added to the TLS protocal (as SSL is now known). SNI provides for the website name to be used in the TLS negotiation and set up. Most importantly the server now knows the correct certificate to use, where on shared hosting it could be one of dozens.

SNI was introduced as long ago as 2003 and is now pretty much universally adopted.

 

[Kerwin]

That's not actually true any more.

It used to be true that you needed a dedicated IP address to use an SSL cert. That was because the SSL handshake/setup was taking place before the client device said what website it was wanting.

That was a problem looking for a workaround and to that end SNI (Server Name Indication) extension was added to the TLS protocal (as SSL is now known). SNI provides for the website name to be used in the TLS negotiation and set up. Most importantly the server now knows the correct certificate to use, where on shared hosting it could be one of dozens.

SNI was introduced as long ago as 2003 and is now pretty much universally adopted.

Ah, I see. Thank you.