Today I heard about a free SSL certificate from the "SSL for Free" service.
How does it differ from paid SSL? I put an SSL certificate in order to increase positions in the SEs, how will the free one affect / not affect this?
I recently found out about free SSLs.
I read on one site that the only service is "lets encrypt", and all other types of your SSL for Free are intermediaries. It is not clear what their interest is.
I went to my personal hosting account and you can really buy paid ones through them, or you can install "lets encrypt" for free.
Haven't installed it myself yet, but I'm thinking about it.
The term is 3 months, but the hosting automatically renews it (at least it says so).
"lets encrypt" is not supported by chrome and some other browser on WinXP, I think it's not so important.
If you are not confused by the limited validity period of such a certificate and the need for constant renewal (it seems after 3 months), then you can try. But in general, such certificates are mainly used by novice "Internet entrepreneurs". Also, if suddenly the update did not happen, you will not even know about it without manually checking, and the site will issue a warning "scaring" customers at this time. :-\
Quote from: kumarajite on Jul 06, 2022, 10:46 AMI put an SSL certificate in order to increase positions in the SEs, how will the free one affect / not affect this?
Paid, or free certificate - it does not matter to search engines. But the absence of any SSL-certificate from the site - it has. Google, for example, will simply ignore such sites in search results. Or put them in the last positions, and show users that actions with such a site are unsafe. Users will be scared, and your site will not be visited.
Settle for a free Let's Encrypt if you do not have an online store with a turnover of the Ali level, or a large financial corporation.
Certificate levels indicate the level of financial risk insurance when conducting transactions through sites protected by SSL encryption.
What is the difference between a free SSL certificate and a paid certificate?
2 their expiration date
Free certificates are relatively short-lived and require constant reissue. For example, the popular Let's Encrypt certificate needs to be reissued every three months.
3 levels of guarantee. The certification authority that issued the free certificate is not responsible for the integrity of the resource on which it is installed. On the other hand, paid digital signatures (OV) allow you to verify the owner of a site. The presence of such guarantees creates high confidence in the site among users and search engines.
4 Have financial guarantees - paid certificates. In case of leakage of user data from a resource on which a paid SSL certificate is installed, the affected party will receive compensation from the certification authority. The amount of the financial guarantee depends on the particular type of certificate.
5. Accessibility Free certificates have a big advantage - accessibility. They are often used for low-budget projects by people who cannot afford paid ones.
There are several types of SSL certificates. The more expensive it is, the more compensation you get in case someone hаcks the connection. And the name of your company will be written in the browser if you click on the certificate.
There are 3 types of them in total:
DV – domain confirmation. 99% of web sites are suitable.
OV – confirmation of the domain and company (company name, address and type). Suitable for large companies.
EV – extended domain and company confirmation (public phone number, fraud check, registration documents, blacklisting check, etc.). Suitable for banks and large companies dealing with finance.
This is a serious non-profit organization that provides free certificates. You may even have heard of companies that sponsor it for more than $300,000 a year each: Facebook, Mozilla, Cisco and Chrome (Google).
Their certificate can be obtained in 3 ways:
1) Virtual web hosting
If you have a virtual hosting, then perhaps it already supports the issuance of certificates via Let's Encrypt. I know that Timeweb, Reg.ru and many others already support it.
I will show you by the instance of the Timweb (which we use) what the certificate issue looks like.
Go to the "SSL certificates" in the menu on the right, then to the "Certificate Store", find there "SSL Let's Encrypt" (was at the very bottom) and click "Order":
This is a free CDN provider, using which you get a lot of useful things, including free SSL certificates for all your domains and subdomains.
The minimum browser and OS requirements for the certificate to work can be found at the bottom of this page (Windows Vista+, Firefox 2+, Android 4.0+, that is, everywhere).
CloudFlare allows you to pass requests to your web site through it (work as a proxy). That is, the visitor's browser will access the Cloudflare servers via https://, and their servers will already send a request to you. At least via https:// at least via http://.
SSL Certificate as a gift
Certificates are also sometimes given when buying domains or web hosting.
The same Namecheap domain registrar gave me certificates for a year when renewing (I do not recommend it: they can close the account for political reasons, if you want to buy domains abroad, use Cloudflare).
Go to the web site where the domain or your web hosting was registered and see if they have such a promotion. Or write to them in support.
Free SSL is more economical, but there are some nuances here too. Firstly, such certificates have a very short validity period, and it must be constantly reissued. Secondly, free SSL is more difficult to install. And thirdly, safety. Paid certificates usually provide a guarantee, unlike free ones.
A paid certificate usually has a guarantee, may have documentation in other languages and a turnkey installation from the certificate provider. You will have to tinker with installing the free one, it will need to be renewed more often, and there is a chance that your site may be copied. An SSL certificate is important not only for promotion, but also for the security of website data, especially if customer data is stored on it or payments are made.
If there is no certificate, browsers warn that the site is unstable and attackers can intercept the data that users leave on the site, for example, an email address or a bank card number.
At best, it may look like a crossed-out lock in the address entry line, at worst, the site page will not load at all.
Therefore, if it is not possible to purchase a paid one, be sure to put a free one.
Not all hosters automatically renew a free certificate, although almost all have this function declared, but if you have one or two sites, it is not difficult to track them yourself and renew the certificate in three months. Of course, for greater confidence, paid certificates are more reliable and stable.
The SSL certificate has a positive effect on the ranking of the site by search engines, but there is no difference whether it is paid or not, the main thing is that it is.
I agree with the previous posts about the free SSL-certificate. But there is another side to this issue.
- How automated is the introduction of a new certificate to your site by the provider. If this is a laborious activity, then every 90 days you will have the pangs of creativity.
- Attackers may like your site and they will create a mirror with a new free 90-day certificate. This will be bad news for you.
You decide. It all depends on the value of your project.