Author Topic: SSL Companies  (Read 3554 times)

Chunkford

  • Inner Core
  • Hero Member
  • *
  • Posts: 1057
    • View Profile
SSL Companies
« on: January 08, 2018, 01:53:44 PM »
Hopefully, someone here can guide me on what to do.

I only realised over the weekend that the SSL certificate I purchased years ago has changed providers on my last renewal (late last year).
Originally I bought a Trustwave SSL through my hosting provider (Vidahost) which has now changed to a GoDaddy SSL provided through starfield technologies. Whoever they are.

I'm not too happy that it was changed without prior consent as I still have the Trustwave link on my site to authenticate it, which now doesn't work.
Plus I'm not too keen to have a GoDaddy SSL seal on my site.

Am I right in thinking SSL certs that are the same level are technically the same. There isn't anything behind the scenes that makes them different?
So if that's right, it's purely a case of who has the most trustworthy seal in the public's eye that I'm buying into?

After kicking up a fuss they have offered me a refund or to try a renew at trustwave.
Not really sure what route to go down. I was thinking along the lines of getting a refund and getting a free SSL through letsencrypt, which I'm sure is a better option than using GoDaddy.
"If my answers frighten you then you should cease asking scary questions"

jetboy

  • Inner Core
  • Sr. Member
  • *
  • Posts: 433
  • Hens of warfare!
    • View Profile
    • Email
Re: SSL Companies
« Reply #1 on: January 08, 2018, 02:35:47 PM »
Let's Encrypt certificates only last for 90 days, so you either need software on the server to renew them or be prepared for a lot of admin. Someone who's actually used them may correct me on this...

https://cheapsslsecurity.co.uk/sslbrands/rapidssl.html

worked for me, but I couldn't argue why RapidSSL and not, let's say, Comodo.

ukgimp

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 2241
    • View Profile
Re: SSL Companies
« Reply #2 on: January 08, 2018, 02:41:48 PM »

ergophobe

  • Inner Core
  • Hero Member
  • *
  • Posts: 9255
    • View Profile
Re: SSL Companies
« Reply #3 on: January 08, 2018, 03:52:01 PM »
Let's Encrypt certificates only last for 90 days, so you either need software on the server to renew them or be prepared for a lot of admin. Someone who's actually used them may correct me on this...

Let's Encrypt is the least effort of any cert I've used. I would switch just for the convenience, forgetting price.

If you are on shared hosting with CPanel, renewal is automatic.

If you are running a dedicated *nix box or VPS, just install Webmin/Virtualmin and it will full automate certificate renewal.

Unless you need some higher level of extended verification, I can't imagine a reason for not using Let's Encrypt.... oh wait, one reason: you're on a Windows box. The tools there are improving though. But last I checked (a year ago or so), you still needed sysadmin skills to make it work on Windows Server 2012.

Chunkford

  • Inner Core
  • Hero Member
  • *
  • Posts: 1057
    • View Profile
Re: SSL Companies
« Reply #4 on: January 09, 2018, 01:32:21 PM »
Cheers everyone, I'm going ask them for a Trustwave SSL cert.
It's the easiest option and will give me the time to move the site elsewhere, more than likely Siteground as they specialise in WP and they're a Lets Encrypt advocate :)

I will say though, I do not recommend Vidahost. They used to be amazing, but since they got brought out it's been a frustrating experience, to say the least.
"If my answers frighten you then you should cease asking scary questions"

ergophobe

  • Inner Core
  • Hero Member
  • *
  • Posts: 9255
    • View Profile
Re: SSL Companies
« Reply #5 on: January 09, 2018, 05:55:27 PM »
I just moved two client sites (one Wordpress and one Drupal) to Siteground after slow response times and downtime at another host. So far so good (only about two months so far).

>> Lets Encrypt advocate

As I say, though, it's built into CPanel now. So any CPanel host (like Siteground) will be compatible.


Chunkford

  • Inner Core
  • Hero Member
  • *
  • Posts: 1057
    • View Profile
Re: SSL Companies
« Reply #6 on: January 09, 2018, 06:14:19 PM »
Interesting to know about lets encrypt and cpanel.
Vidahost don't and have their own custom backend. I suppose that's another reason to move then.
"If my answers frighten you then you should cease asking scary questions"

ergophobe

  • Inner Core
  • Hero Member
  • *
  • Posts: 9255
    • View Profile
Re: SSL Companies
« Reply #7 on: January 09, 2018, 08:09:43 PM »
Interesting to know about lets encrypt and cpanel.

And while I'm at it, it is for sure in Webmin/Virtualmin and I am almost sure it's included in Plesk. It's also why Shopify now is https by default for all shops. If I were a bottom feeder certificate authority, I would be very worried. The only reason to get a paid cert is you need Extended Validation. If you don't, Let's Encrypt is both easier and cheaper. Once it's set up and set to auto-renew, you never have to think about it.

Of course, if you want your cert to prove you are who you say you are and perhaps even prove you are where you say you are, you need EV. But the sub $150 cert market is dead.

Leona

  • Inner Core
  • Hero Member
  • *
  • Posts: 543
    • View Profile
    • Email
Re: SSL Companies
« Reply #8 on: February 10, 2018, 11:12:07 AM »
I am on hawkhost (cpanel) with lets encrypt and it renews automatically for me. Avoid Symantec certificates google have fallen out with them.