ssl certificates

[ezb]

Hello,

 

I would like to know why there is such a difference of price on SSL certificates ?

 

I will only use Pay Pal as a method of payment, but it seems I need a certificate to protect my costumers's information.. And it seems that in the long term, it is a good move (well that is the SSL certificate seller's speech).

 

I'm wondering if I should take the SSL certification of my host A2hosting, or choose another one (perhaps cheaper??) ?? Rapidssl?

 

Do I need a dedicated IP for SSL ?

 

Thanks. E

[benjamin utterback]

Hi ezb, no I do not think you need a dedicated IP for SSL, a basic SSL should do fine. I've seen people very happy with SSL certificates that are in the 20 dollar range.

 

Sometimes you pay more for "Dedicated IP" SSL, which is used for high traffic and large stores, to prevent fraud. However, these are very large store and imo you do not need to purchase that. Also, sometimes you pay more for little bells and whistles like a URL bar color changer (to indicate to the customer that you are in-fact using SSL) However, for nearly all purposes for PrestaShop, I would not say that you do not need to purchase a Dedicated IP for SSL.

[cocothecat]

The cost depends on the level of security you wish and the amount of paper work you want to fill in, normally the higher the security the more hoops you need to jump through and the longer it takes to get granted. Any entry level SSL should suit you for a shared server and would not require a dedicated IP

[Whispar1]

Agree with above posts.

 

Just an FYI, technically speaking.....Standard PayPal payments go through PayPal's servers and therefore an SSL is not needed. However, if you are storing ANY customer information, logins, etc. you should have an SSL and for $50 for an entry-level SSL, any eCommerce site should have one.

 

Most shared plans include a shared SSL and the RapidSSL at $40-50/year is a good investment.

[ezb]

Thank you W, Coco and Ben.

 

Here is the response I got from my hosting service, which by the way has very good service so far!!

 

A dedicated IP is what makes your account different from someone else's, so it is required for an SSL Certificate. A dedicated IP doesn't mean you need a dedicated server. SSL Certificates are set up for domain names, but configured by IP address, so the IP has to be dedicated to the specified domain.

[Bill Dalton]

ezb, at one time we did need a dedicated IP for SSL, not anymore.

http://www.digicert.com/ssl-support/apache-multiple-ssl-certificates-using-sni.htm

[ezb]

Hi Bill, thanks a lot. Well what can I do ? I dont want to argue with my host about this. I will take a decision tomorrow. I really need things to accelerate to launch my site.

[Dh42]

I haven't come across a host yet that will use that extension if yours does one thing to consider is platform. If you users are using windows xp (yeah I know it is old, but a lot of companies still use it.) they will most likely get security errors. What is you host charging you for this? Mine charges $2.50 a month for an ip and I get SSL certificates for around $8.

[ezb]

They are charging me 3$. Not much, I just wanted to know if it was necessary.

[Dh42]

Yeah, you need it if you are going to use an ssl certificate. In the long run having an ssl certificate costs about $45 a year, but if it makes you a couple of sales it is worth it.

[ezb]

Thank you, I have ordered and I'm waiting for an email..

 

Great participation of many members here, hope it will help others.

[cocothecat]

Once you get it I found adding some text on the cart / registration page has added an extra 44% conversion rate. Sample of text I used is below just switch out 256bit to 128bit or whatever your SSL is.

 

Payment & Security

 

Our site is secured by a 256bit SSL (Secured Socket Layer) meaning our site is 100% safe for you to use. Transactions are handled through PayPal but you don’t need a PayPal account to buy this product. Any credit or debit card will do!

Edited March 22, 2013 by cocothecat (see edit history)

[Dh42]

cocothecat,

If you focus on things like that ( which is a good thing) you might like this article, it is a real life case study on button text and color. http://blog.optimizely.com/2010/11/29/how-obama-raised-60-million-by-running-a-simple-experiment/

[cocothecat]

cocothecat,

If you focus on things like that ( which is a good thing) you might like this article, it is a real life case study on button text and color. http://blog.optimize...ple-experiment/

 

I constantly run A/B and Split Tests on all of my clients sites some I've gotten over a 500% conversion rate! Reduced bounce through the checkout I love to test over and over! Thanks for the link not seen that one before, although button text I have proven to have an impact I've actually found that button colours have very little to do with the over all result

[ezb]

My hosting (a2hosting) is asking me if I want with www or without www. What is the difference, what I should do ?

 

secure site. You can only specify ONE domain. (I.e. "www.mysite.com" or "mysite.com" or "subdomain.mysite.com") PLEASE NOTE: A dedicated IP address is required.

 

It is confusing to me as I thought it was the same.

[Whispar1]

You will need to choose one and then write redirects in the .htaccess file to go to whichever one you choose otherwise you could get penalize for duplicate content. Google sees www.somesite .com and somesite .com as duplicates.

www or non www is personal preference.

[ezb]

very interesting, I would never thought there was a difference between then...

 

what people usually site owners usually take for the SSL ?? With or without www ?

[cocothecat]

with www is the prefered option for ssls id say. just go into google webmaster tools as mentioned above and add both urls with www. and without the www. then set your prefered domain as www.

 

this stops the site being indexted as www.domain and http://domain and uses your default url.

[ezb]

Thanks Cocothecat!!! great, great, great!

[ezb]

while verifiying my account with google webmaster... should I get two keys to verify that Iam the owner of the site ? Or just one key will be good for www.mysite.com and mysite.com ???

[Dh42]

www. is considered a subdomain. What do you plan on using for your site the www version or the .mysite.com version?

[ezb]

I plan to use the www.mysite.com version for the ssl.

[Dh42]

The I would only worry about setting it up with www.

[ezb]

ok so if www is considered a subdomain, I will need another key for mysite.com, if I understood correctly

[Dh42]

You will need to redirect anyone that enters your site without the www. to the www. subdomain. It should already do it actually.

[cocothecat]

You only need to verify it the once then you add the extra url so you upload the script to your site now (assume its www.) then you add the url as http:// once that done you click prefered url as www.

[the.rampage.rado]

with www is the prefered option for ssls id say. just go into google webmaster tools as mentioned above and add both urls with www. and without the www. then set your prefered domain as www.

 

this stops the site being indexted as www.domain and http://domain and uses your default url.

This GWT setting has nothing to do with the indexation. It says it's for display purpose only (how it will appear in serps)

[cocothecat]

http://support.googl...en&answer=44231

 

http://support.googl...answer=139066#1

 

ITs how it appears yes but it also stops the same link from showing twice using http://mysite and http://www.mysite thats why you set a prefered domain.

Edited March 24, 2013 by cocothecat (see edit history)

[deonderd]

i'm using directadmin

multistore

 

it are 10 domains with that are using the same catalog..

 

Do i need to setup 10 different SSL certificates?

 

pr only the one of the mainstore?

 

thnx