It's funny because I remember the green secure tags in the URL bar, and that was something I really wanted on my own website. So then I had realized that I stopped seeing them, then I visited some well known respectable sites, and still didn't see the green secure lock. And then I did a little research, came across this video, and it all makes sense now. A Free SSL certificate sounds like the best investment now.
Hi @TonyTeachesTech, I came across your video while exploring whether to buy a paid SSL certificate or not. Even though Google SEO does not mistrust the free SSL, but some antivirus programs do. They have MITM setting enabled which causes the let's encrypt certificate to be termed as invalid certificate and the users still end up with a warning message that they are entering an untrusted domain. So, for websites holders may still have to buy Paid SSL certificates.
In some countries, certain payment gateways insist on EV certs to ensure authenticity and for 3rd party, independently verified websites to be able to perform e-commerce transactions. The belief being that a certain level of expenditure incurred on the part of the organization to prove and validate their identity goes a long away toward deterring any other impersonator / scammer from claiming to be someone more well-known.
Interesting, when working with some payment gateways I never encountered such hassle to just gain access to payment gateway's API. Such as Square and Paymongo. SSL never truly protects visitors from being scammed or phished if they are not literate on what is SSL about and that's like most users worldwide. Especially when an elaborate scheme is used to target such users. Take a look for example how youtube content creators receive a fake document about a copyright strike via shared file on google drive. Users on the receiving end might believe such strike is legitimate without checking their email address to see what is the email of the file sharer is. Clicking on the link on the document, brings the user through several redirects before finally injected with malware while getting their info such as email.
SSL Certificates are only valid if the client device which is accessing the content generally trusts the source of the certificate. This is done by the client trusting the Certificate Authority Root certificate and Intermediate certificates if present (which they generally are). Though their is usually a general consensus of approved Internet CA's their are some applications/vendors which won't trust certain CA's.
Can Let’s Encrypt do wildcard SSL where it can auto generate SSL for all subdomain created in the future and not just the ones you specified during installation? Thanks!
It's funny because I remember the green secure tags in the URL bar, and that was something I really wanted on my own website. So then I had realized that I stopped seeing them, then I visited some well known respectable sites, and still didn't see the green secure lock. And then I did a little research, came across this video, and it all makes sense now. A Free SSL certificate sounds like the best investment now.
Thank you, you just saved me £250, definitely subscribing after this. Gold.
Hi @TonyTeachesTech, I came across your video while exploring whether to buy a paid SSL certificate or not. Even though Google SEO does not mistrust the free SSL, but some antivirus programs do. They have MITM setting enabled which causes the let's encrypt certificate to be termed as invalid certificate and the users still end up with a warning message that they are entering an untrusted domain. So, for websites holders may still have to buy Paid SSL certificates.
In some countries, certain payment gateways insist on EV certs to ensure authenticity and for 3rd party, independently verified websites to be able to perform e-commerce transactions. The belief being that a certain level of expenditure incurred on the part of the organization to prove and validate their identity goes a long away toward deterring any other impersonator / scammer from claiming to be someone more well-known.
I was not aware. Can you share an example?
Interesting, when working with some payment gateways I never encountered such hassle to just gain access to payment gateway's API. Such as Square and Paymongo. SSL never truly protects visitors from being scammed or phished if they are not literate on what is SSL about and that's like most users worldwide. Especially when an elaborate scheme is used to target such users. Take a look for example how youtube content creators receive a fake document about a copyright strike via shared file on google drive. Users on the receiving end might believe such strike is legitimate without checking their email address to see what is the email of the file sharer is. Clicking on the link on the document, brings the user through several redirects before finally injected with malware while getting their info such as email.
Thank you. I subbed to your channel just now. This info was very illuminating. The questions and answers were spot on for me.
Awesome, thank you Michael :)
very valuable information for non-savvys like me
Glad it was helpful!
Great information! Subscribed!
can you make a video on how to issue a new Free SSL Certificate for a website, how for a mail server, and how to renew one (after expire) ?
Here's a tutorial on this topic assuming you're self-hosting ruclips.net/video/ghZXFyIyK1o/видео.html
SSL Certificates are only valid if the client device which is accessing the content generally trusts the source of the certificate. This is done by the client trusting the Certificate Authority Root certificate and Intermediate certificates if present (which they generally are). Though their is usually a general consensus of approved Internet CA's their are some applications/vendors which won't trust certain CA's.
Can Let’s Encrypt do wildcard SSL where it can auto generate SSL for all subdomain created in the future and not just the ones you specified during installation? Thanks!
I don't know but things only matter is to see green lock logo while surfing website thats it ...
Thank you for this video!
felt great to be proved wrong (about paid certs being better than free).
:)
Can you share link of interview.
Then why do we have EV ? and that to expensive 👀
Thank you, Tony
Does an ecommerce website need a paid SSL?
Very informative video
Glad you think so!
very useful buddy 👍
Glad you think so!
Thank you
We don't use SSL anymore. It was replaced by TLS about 23 years ago.
😂wow