Are Free SSL Certificates Really Good Enough for Your Website?

Рет қаралды 16,910

Күн бұрын

Пікірлер: 30

@nerdmoment Жыл бұрын

It's funny because I remember the green secure tags in the URL bar, and that was something I really wanted on my own website. So then I had realized that I stopped seeing them, then I visited some well known respectable sites, and still didn't see the green secure lock. And then I did a little research, came across this video, and it all makes sense now. A Free SSL certificate sounds like the best investment now.

@Wilder.A.S Жыл бұрын

Thank you, you just saved me £250, definitely subscribing after this. Gold.

@SonalGarg-tp5px 4 ай бұрын

Hi @TonyTeachesTech, I came across your video while exploring whether to buy a paid SSL certificate or not. Even though Google SEO does not mistrust the free SSL, but some antivirus programs do. They have MITM setting enabled which causes the let's encrypt certificate to be termed as invalid certificate and the users still end up with a warning message that they are entering an untrusted domain. So, for websites holders may still have to buy Paid SSL certificates.

@SparxNet 2 жыл бұрын

In some countries, certain payment gateways insist on EV certs to ensure authenticity and for 3rd party, independently verified websites to be able to perform e-commerce transactions. The belief being that a certain level of expenditure incurred on the part of the organization to prove and validate their identity goes a long away toward deterring any other impersonator / scammer from claiming to be someone more well-known.

@TonyTeachesTech 2 жыл бұрын

I was not aware. Can you share an example?

@daleryanaldover6545 2 жыл бұрын

Interesting, when working with some payment gateways I never encountered such hassle to just gain access to payment gateway's API. Such as Square and Paymongo. SSL never truly protects visitors from being scammed or phished if they are not literate on what is SSL about and that's like most users worldwide. Especially when an elaborate scheme is used to target such users. Take a look for example how youtube content creators receive a fake document about a copyright strike via shared file on google drive. Users on the receiving end might believe such strike is legitimate without checking their email address to see what is the email of the file sharer is. Clicking on the link on the document, brings the user through several redirects before finally injected with malware while getting their info such as email.

@ale7361 Жыл бұрын

Thank you. I subbed to your channel just now. This info was very illuminating. The questions and answers were spot on for me.

@TonyTeachesTech Жыл бұрын

Awesome, thank you Michael :)

@ChristopherFreedom Ай бұрын

Great information! Subscribed!

@goldenarithmetic1850 Жыл бұрын

Can Let’s Encrypt do wildcard SSL where it can auto generate SSL for all subdomain created in the future and not just the ones you specified during installation? Thanks!

@MoLtenMetaL7 2 жыл бұрын

very valuable information for non-savvys like me

@TonyTeachesTech 2 жыл бұрын

Glad it was helpful!

@panl8370 2 жыл бұрын

can you make a video on how to issue a new Free SSL Certificate for a website, how for a mail server, and how to renew one (after expire) ?

@TonyTeachesTech 2 жыл бұрын

Here's a tutorial on this topic assuming you're self-hosting kzbin.info/www/bejne/nZm9iXmvft5-Z9E

@Neosid996 2 жыл бұрын

SSL Certificates are only valid if the client device which is accessing the content generally trusts the source of the certificate. This is done by the client trusting the Certificate Authority Root certificate and Intermediate certificates if present (which they generally are). Though their is usually a general consensus of approved Internet CA's their are some applications/vendors which won't trust certain CA's.