SSL Certificates
-
I did come up with a question in all of this.
Not doing any real "business" online, I never really had a need for us to validate who we were.
But obviously, that is important to a company doing business online.
However, does anyone ever really check that stuff? I can say I don't think I've ever taken the time to validate a certificate was the physical address and stuff I thought it was supposed to be.
-
@BRRABill said in SSL Certificates:
I did come up with a question in all of this.
Not doing any real "business" online, I never really had a need for us to validate who we were.
But obviously, that is important to a company doing business online.
However, does anyone ever really check that stuff? I can say I don't think I've ever taken the time to validate a certificate was the physical address and stuff I thought it was supposed to be.
I do check them before I'll use a website for the first time. Outside of that, not much.
-
@travisdh1 said
I do check them before I'll use a website for the first time. Outside of that, not much.
I was like, yeah that makes sense, yeah, of course. And then realized I had never done it.
-
I still can't get over it was only $5 a year. LOL.
-
Some of the SSL folks do verify information. We actually had our SSL Certificate denied once because our Address on file with the SSL site at the time still had an old street name on it... Of course, all it took was an edit to fix that, but still...
-
@BRRABill said in SSL Certificates:
I still can't get over it was only $5 a year. LOL.
-
@aaronstuder Thanks again.
-
@BRRABill No Problem. I love saving money too!
My hope is that Let's Encrypt is going to force paid for SSL certs to be more reasonable.
-
@aaronstuder said in SSL Certificates:
@BRRABill No Problem. I love saving money too!
My hope is that Let's Encrypt is going to force paid for SSL certs to be more reasonable.
I think it will.... I'm already using it for some Personal stuff... I'd run it for a business site or a forum (cough, cough) any day.
-
@aaronstuder said
My hope is that Let's Encrypt is going to force paid for SSL certs to be more reasonable.
Maybe I'm lucky, but I'm not sure how much cheaper it can get that $5.
I mean, a beer costs more than that, and I drink a lot of beer.
-
@BRRABill said in SSL Certificates:
@aaronstuder said
My hope is that Let's Encrypt is going to force paid for SSL certs to be more reasonable.
Maybe I'm lucky, but I'm not sure how much cheaper it can get that $5.
I mean, a beer costs more than that, and I drink a lot of beer.
Right, but I would love a $20 a year wildcard cert
-
@dafyre said in SSL Certificates:
@aaronstuder said in SSL Certificates:
@BRRABill No Problem. I love saving money too!
My hope is that Let's Encrypt is going to force paid for SSL certs to be more reasonable.
I think it will.... I'm already using it for some Personal stuff... I'd run it for a business site or a forum (cough, cough) any day.
You mean like this one that is running on NodeBB?
-
@aaronstuder said in SSL Certificates:
@BRRABill said in SSL Certificates:
@aaronstuder said
My hope is that Let's Encrypt is going to force paid for SSL certs to be more reasonable.
Maybe I'm lucky, but I'm not sure how much cheaper it can get that $5.
I mean, a beer costs more than that, and I drink a lot of beer.
Right, but I would love a $20 a year wildcard cert
Other than loss of something there's no reason that wildcard certs need to cost any more than a single entry quote. The whole thing was just a way to make money!
-
@JaredBusch How do you do that?
-
@aaronstuder said in SSL Certificates:
@JaredBusch How do you do that?
On the proxy of course. NodeBB is not exposed directly. NodeBB runs on a non-standard port that the proxy just redirects to.
-
@JaredBusch No, I get that part. How do you get a cert with sub-domains?
-
@aaronstuder said in SSL Certificates:
@JaredBusch No, I get that part. How do you get a cert with sub-domains?
They're called wildcard certs, and the same place you'd buy a normal cert.
-
@travisdh1 said in SSL Certificates:
@aaronstuder said in SSL Certificates:
@JaredBusch No, I get that part. How do you get a cert with sub-domains?
They're called wildcard certs, and the same place you'd buy a normal cert.
Your missing the point. He has a Let's Encrypt Wildcard Cert. - They don't offer wildcard certs....
-
@aaronstuder
This, maybe?
Can I get a certificate for multiple domain names (SAN certificates)?
Yes, the same certificate can apply to several different names using the Subject Alternative Name (SAN) mechanism. The Let's Encrypt client automatically requests certificates for multiple names when requested to do so. The resulting certificates will be accepted by browsers for any of the domain names listed in them. -
@BRRABill said in SSL Certificates:
@aaronstuder
This, maybe?
Can I get a certificate for multiple domain names (SAN certificates)?
Yes, the same certificate can apply to several different names using the Subject Alternative Name (SAN) mechanism. The Let's Encrypt client automatically requests certificates for multiple names when requested to do so. The resulting certificates will be accepted by browsers for any of the domain names listed in them.The Let's Encrypt client software will get you certs for every domain being served tho. No need for a wildcard when you can
letsencrypt-auto
And get certs for every valid domain being served on the server?