(StartSSL) 100% Trusted SSL Certificates - Free Forever

Related Stores

startssl.com

• 

  Maxx Power on 06/06/2014 - 09:29

  +3

  Haven't these ALWAYS been free…?
  Not really a bargain :)

  I remember using these in the 90's but back then they were only accepted by some browsers…

  • 

    guidedlight on 06/06/2014 - 09:33

    +1

    Yes, they have always been free, but the "awareness" level in the community is fairly low.
    I've never had a problem with them being not accepted by browsers (although I'm sure this was not always the case).

    • 

      ryang on 06/06/2014 - 10:30

      StartSSL have an "interesting" history, stories of blackmail, fraud, etc. That was a number if years ago now, but I'd still never use them for anything production.

      Testing, personal use, sure, go crazy!

  • 

    Typical16-bitEnjoyer on 11/06/2014 - 12:05

    Their website looks like from back in the 90s as well but it works and is free!

• 

  internet-stranger on 06/06/2014 - 09:29

  +3

  Free, until you need to re-issue your certificate then they charge you $35+, not worth it when you can get basic SSL certificates for ~$5/yr.
  https://www.techdirt.com/articles/20140409/11442426859/shame…

  Edit: Always been 'free', not a bargain/deal

  • 

    ryanhunt on 06/06/2014 - 10:05

    +3

    Care to share a link to a ~$5/year SSL cert?

    • 

      ryang on 06/06/2014 - 10:28

      +2

      Google is so hard to use though!!!

      https://cheapsslsecurity.com

• 

  [Deactivated] on 06/06/2014 - 09:58

  +2

  Might be alright for non-critical testing environments. Would never put them anywhere near serious production setups. You get what you pay for.

  Agree that these are not a bargain. Have always had a free product as far as I have known.

• 

  tomclancy on 06/06/2014 - 10:05

  -1

  Always free. Not a bargain/deal

• 

  [Deactivated] on 06/06/2014 - 12:35

  Doesn't have the same level as trustworthiness ??? Get what you pay for? it's an SSL cert.

  The only trust issue would be for the customer/user as there's little checking that you are who you say you are. But since your browser apparently accepts these without warning (?) then that'd be the concern for the customer/user. For the site owner, I can't see what it matters who you buy off, unless you want insurance.

  As for the cost. It's like people buying their domain names from the old MelbIT for $35/yr, apart from perception (& possibly better service), there's not difference to the $10 crazydomain one,it's a domain!

  • 

    guidedlight on 06/06/2014 - 13:03

    +3

    No, the other (and in my opinion, the more important) "trust" issue is that the StartSSL is generating the key pair…so what happens to that key pair later. Perhaps those keys become available to criminal groups, government agencies, etc.

    Private keys can be used to steal credit card data, etc. The whole foundation of the SSL system, is one of trust and if the certificate provider is 'dodgy' then that destroys the integrity of your SSL configuration.

  • 

    jong on 06/06/2014 - 13:19

    It's like people buying their domain names….

    It's not the domain, it's the level of access to/control of the domain once it exists. If it's with a low-security registrar, there's a risk that the domain could be stolen and given to someone else. If you Google "domain theft", there's been a bunch of them over the years.

    I'm not endorsing Melbourne IT, though.

    • 

      jong on 06/06/2014 - 13:20

      Remember: two-factor authentication is your friend.

      • 

        ryang on 06/06/2014 - 16:03

        Doesn't help you at all when it's the registrar that is holding the domain hostage …