Discussion Forums  >  Basics, How it Works, Is it free?

Replies: 5    Views: 151

SmugWimp
Smugger than thou...
Profile
Posts: 6316
Reg: Nov 07, 2012
Tamuning, GU
81,410
09/26/16 12:03 AM (2 years ago)

My SSL Cert cost me $10 rather than $250. For now.

I wrote about how to generate your own SSL Certificate in this post:

https://www.buzztouch.com/forum/thread.php?fid=FD65B8210ACAFE109B4D2A9&tid=FD65B8210ACAFE109B4D2A9

but if you want to see a 'real world' example, Check out 'https://www.ezmqtt.com'.

Your browser will scream and yell about the cert being invalid, but if you click the 'advanced' mode of whatever browser you're using, you'll see the bottom line is, "I" issued it, and as of the moment, "you don't trust me". By default that's what happens, and that's how it should be.

If you create your own SSL certificate, your users will need to 'add an exception' for your site, or by adding your "Certificate Authority" (Root Cert) into the Root Store. More on that in the document.

I need a 'real' SSL cert, because this will end up being a commercial venture. But until the site is ready, I want to commit to SSL without having to waste half a year or more on development tasks.

So I wrote my own. Hostgator charges $10 to install a 3rd party certificate. Easy Peasy. And I made it for 5 years, so if development takes me a little longer...

I just recently registered 'ezmqtt.com' for an idea I'm working on. After I clean up from providing dedicated client services, I will be providing MQTT 'broker' services, which will lend itself to a few services BT members are always looking for: Chat, Push (on both Android and iOS) and my main focus, MQTT communications for 'the internet of things'. I'm not sure how to phrase it so it doesn't come out sounding like spam, so I'll just say this: Initially this setup is for my client. Afterwards, it scales. And we can all dance a little. It won't be free, but it'll be cheap. More to come. But it'll take a few months to get all my ducks in a row.

Cheers!

-- Smug

EDIT: I discovered that with Hostgators shared plan, you can only have one SSL cert installed, unless you purchase a 'multi-domain' cert. The price isn't actually all that bad. But the bottom line is, installing 'my' certificate voided my 'real' certificate. I had to have them reinstall the old cert, and remove 'my' cert. So this 'example' is no longer valid. Sorry folks. Maybe I'll set it up on a local server later...
 
AlanMac
Aspiring developer
Profile
Posts: 2612
Reg: Mar 05, 2012
Esher, UK
37,120
like
09/26/16 12:59 AM (2 years ago)
Hi Smug, great that you are sharing your knowledge on this, especially as it seems all of us developing for ios with a self hosted setup will need it to be https by the end of the year - e.g. to pick up an updated config file.

From your example, the browser throws up a severe warning that would cause most people to go no further. My question is, if we try to implement a self-made SSL certificate on a self hosted buzztouch set-up, how would an app react? Would the app be able to connect?

Alan
 
CMCOFFEE
Android Fan
Profile
Posts: 2017
Reg: Jan 04, 2013
Amarillo, Texas
26,670
like
09/26/16 07:46 AM (2 years ago)
Cool stuff !

For a couple of years Ive been posting about Lets Encrypt. No one could use it because they were still in beginning stages of development. They've finally released an official version everyone can use. Its free and funded by alot of the top tech companies. The only catch is that you have to update the cert every few months or so. Alot of people have created scripts to automate that process.

Also firefox browser is the only browser thats approving these certs at the time, although they have applied for the other browser. Seeing that "Google Chrome" is a sponsor, Im sure they will approve them soon.

Not sure how great it is but I want to try it out. I honestly dont mind paying the $20/yr fee for my cert, but I want to try it just to learn I guess.

https://letsencrypt.org/docs/client-options/

https://letsencrypt.org/sponsors/

https://letsencrypt.org/
 
S-George
Apple Fan
Profile
Posts: 111
Reg: Jan 18, 2012
location unknow...
4,460
like
09/26/16 05:05 PM (2 years ago)
I use Lets Encrypt in my latest magento eshop, it works fine with all the popular browsers. My site is hosted at siteground thy have Lets Encrypt in the Cpanel and the good thing is that it is renewing automatically.


https://dl.dropboxusercontent.com/u/6888551/Screen%20Shot%202016-09-27%20at%202.51.53%20%CF%80.%CE%BC..png
 
SmugWimp
Smugger than thou...
Profile
Posts: 6316
Reg: Nov 07, 2012
Tamuning, GU
81,410
like
09/27/16 02:49 AM (2 years ago)
Alan: I'm not entirely sure, but I'll let you know when I find out.

Chris: That's pretty neat! I wouldn't mind paying $20 a year for my certs either. Buying them from Hostgator isn't so cheap, lol!

Cheers!

-- Smug
 
AlanMac
Aspiring developer
Profile
Posts: 2612
Reg: Mar 05, 2012
Esher, UK
37,120
like
12/29/16 02:47 AM (2 years ago)
As part of migrating to a VPS with a different hosting provider, I was able to implement Lets Encrypt. It's free and it works - can't argue with that! Thanks for the tip.
 

Login + Screen Name Required to Post

pointerLogin to participate so you can start earning points. Once you're logged in (and have a screen name entered in your profile), you can subscribe to topics, follow users, and start learning how to make apps like the pros.