Thanks for your feedback. I understand most of online banking are more keen to use https due to they making transactions.
But my web only contain "sensitive" personal data such as staff full name, identity registration card number, full address, bank account number, spouse info, salary info etc.
Correct me if im wrong,
SSL is secure while communicating between client & server whereby to prevent "eavesdropping" activity in the middle. Correct?
If above is true, then my thought of SSL to prevent direct hacking is wrong.
I just thought implementing SSL would be an added feature or so called to give me an excuse to customer whenever they asking "how" secure is your web?. Then I could reply that my web is secured by SSL......
Soooo should I go with SSL or not? Can I just implement it to impress my client?? LOL.......or is there other way to prevent hacking? sorry guys....i have skill on coding PHP but my knowledge on web security is very low.
My ex-colleague once told me that any web can be hacked and it just a matter of time, meaning does my web is important for any hacker out there willing to waste their time to hack my web.