SitePoint Sponsor

User Tag List

Results 1 to 7 of 7
  1. #1
    SitePoint Enthusiast
    Join Date
    Nov 2003
    Location
    England
    Posts
    37
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    SSL Certificates

    Hello,

    I'm setting up a membership site. Well, ive already set it up using Account Manager Lite but would now like to accept Creditcard payments. Ive purchased the full version of account manager and have paid my money to sign up for 2checkout.com. I've followed all the instructions to set up ACcount Manager and when the script failed (2checkout says invalid paremeters) i was informed that "oh yeah... 2checkout needs you to have a secure server".

    Darn.

    The server we are on currently doesn't have any ssl facilities andwe've only just moved there so there's no chance of moving servers so i looked at SSL Certificates. The problem is that i dont really understadn what they are. Would i buy one and register it with my domain, and then i can decide which pages are to become secure (the order form in this case) and these pages will have the little padlock and will be deemed secure by 2checkout?

    I'm really rather confused as to what SSL certificates will do for me. Will they make my pages 'secure'?

    I see that instantssl.com have a 30 day trial so i'll probably end up trying it out first but would like to know what im getting msyefl into first.


    Cheers

  2. #2
    Texan at Heart Corey Bryant's Avatar
    Join Date
    Sep 2003
    Location
    Castle Rock, CO
    Posts
    2,491
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Check out: http://www.geotrust.com/quickssl/index.htm - your hosting company will install the cert. When registering - make sure you register www.yourdomain.com & not yourdomain.com. As far as calling the HTML via secure - you will use: https://www.yourdomain.com/checkout.html . And yes as long as your are calling https - it is secured when you have that cert.

  3. #3
    SitePoint Enthusiast
    Join Date
    Nov 2003
    Location
    England
    Posts
    37
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by Corey Bryant
    Check out: http://www.geotrust.com/quickssl/index.htm - your hosting company will install the cert. When registering - make sure you register www.yourdomain.com & not yourdomain.com. As far as calling the HTML via secure - you will use: https://www.yourdomain.com/checkout.html . And yes as long as your are calling https - it is secured when you have that cert.


    ok. Thank you for your help. Much appreciated.

    Cheers.

  4. #4
    SitePoint Member
    Join Date
    Oct 2003
    Location
    San Francisco
    Posts
    21
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by Corey Bryant
    Check out: http://www.geotrust.com/quickssl/index.htm - your hosting company will install the cert. When registering - make sure you register www.yourdomain.com & not yourdomain.com. As far as calling the HTML via secure - you will use: https://www.yourdomain.com/checkout.html . And yes as long as your are calling https - it is secured when you have that cert.
    SSL encrypts http data. Thus https, as in http secure. Normally http traffic travels accross the internet in plain text. That means that it can be "sniffed" , or viewed by an individual with access to the network where your data travels. Most networks are "switched" so this is no so much a problem. But still, it helps to encrypt communications of sensitive data such as credit cards.

    So SSL will use its certificate to prove its authenticity (it will actually use a public/private key system to encrypt your data). What you do is you generate a certificate request and key, you have a "Certificate Authority" (much like a notary) place their stamp of approval on your certificate request., and then they will send you back a "Certified" SSL certificate for use with your key. When they do this, browsers that visit your site will recognize the stamp of approval, and close the lock stating that a) your site has been approved by a certificate authority, and b) your data is encrypted.

    We use Geotrust Certificates, as they are a more affordable Certificate Authority.

    HTH


  5. #5
    SitePoint Guru wild boar's Avatar
    Join Date
    Aug 2003
    Location
    illinois
    Posts
    793
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    get if for 25 dollars a year at ev1servers.net

    where I got mine.. I'm not paying no 200 dollars

  6. #6
    SitePoint Enthusiast
    Join Date
    Nov 2003
    Location
    England
    Posts
    37
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Well, not onlydoes our host not provide our own certificate or facilities to have a secure page, but they will not lwet us buy a certificate from elsewhere and use it on their server. this is supanames.co.uk so they arent small. We've been really screwed over by all this. Lot of money wasted.

  7. #7
    SitePoint Guru wild boar's Avatar
    Join Date
    Aug 2003
    Location
    illinois
    Posts
    793
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by horsecow
    Well, not onlydoes our host not provide our own certificate or facilities to have a secure page, but they will not lwet us buy a certificate from elsewhere and use it on their server. this is supanames.co.uk so they arent small. We've been really screwed over by all this. Lot of money wasted.

    Well, let's put them on the black list and switch hosts with a host that doesn't have a number one priority of selling their own ssl certificates.

    Looks like it's time to switch hosts.. citadelhost.com helped me install my certificate at no charge.. from ev1servers.net.. was installed less then a day..


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •