Solved

SSL Implementation

Posted on 2003-12-09
4
754 Views
Last Modified: 2010-04-11
How to set up an existing http site to work on SSL .
What are the different steps involved . Maybe following questions will help me understand the implementation of SSL

(1) Can we add SSL to the web?
(2) How do we add SSL to our web?
(3) Since our servers are managed by a third party vendor , I need to know what to ask them to do. (4) How it will impact or website.
(5) Do we need to provide a digital certificate? If so , where do we get one.


Best Regards
Amit
0
Comment
Question by:amitjk
  • 2
  • 2
4 Comments
 
LVL 18

Expert Comment

by:chicagoan
ID: 9908345
(1) Can we add SSL to the web?
probably
(2) How do we add SSL to our web?
You'll have to have a name registered in DNS, submit to a business check or be registered with Dun and Bradstreet or the like, and give somebody some money.

Apache: http://rocky.uta.edu/doran/vugm2001/
IIS: http://www.instantssl.com/ssl-certificate-support/cert_installation/iis_ssl_certificate_5x.html

(3) Since our servers are managed by a third party vendor , I need to know what to ask them to do.
If you have a co-located server see 5. If you have a managed web service just call and ask them.
(4) How it will impact or website.
More processor overhead for ssl delivered pages.
(5) Do we need to provide a digital certificate?
An SSL certificate is a digital document that says the Certificate Authority says the web site belongs to you. They will provide the necessary keys. If this is a shared server at a hosting company, they probably have a shared certificate you can use.
(6) If so , where do we get one.
http://www.sslreview.com/content/index.html

0
 
LVL 5

Expert Comment

by:Insolence
ID: 9940942
Lemme try that again for you...

#1: Yes, most likely
#2: Since you're not the actual host, you don't do anything except ask your host to change your website to SSL.  Unless they give you some sort of web-based interface to manage your own website.  Then typically, you can do it on your own
#3: Call up your host and say... "Can I change my website to use a secure connection since I have private data that will be tranferred back and forth?"  Something along those lines.
#4: It will not impact your website directly.  Users WILL have to go to https:// instead of http unless you forward them automatically to https or something.  This you can discuss and setup most likely with your host.
#5: No, in almost no cases do you need to provide a digital certificate.  Most hosting services provide one, or you can ask them to make you a self-signed certificate.  This isn't the most secure, but it's free.  If you DO need one, or want one for some reason from a trusted company, be ready to fork out good money yearly.  That link provided above should suffice, it shows and reviews the major SSL certificate providers.

Just providing a different wording... imho.  =)

 - Insolence
0
 
LVL 18

Expert Comment

by:chicagoan
ID: 9941023
wish I'd said that...
0
 
LVL 5

Accepted Solution

by:
Insolence earned 75 total points
ID: 9944018
lol, chicagoan, what you said sounded french to me man.  I've done tech support for a long time, and if I said what you said above to any normal human being, they would be all "huh!?!".  And well, you didn't touch on the real answers IMHO.  No offense...
0

Featured Post

Free Tool: Postgres Monitoring System

A PHP and Perl based system to collect and display usage statistics from PostgreSQL databases.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Samsung S5 - Bricked?? 5 62
Windows Security Pop-Up 7 49
How does ADMT SID History work? 1 21
Apple.com Account Security Lockout - SCAM? 3 19
Knowing where your website is hosted is as important as the features you receive, the monthly fee, and the support you receive. Due diligence should be done when choosing your next hosting provider.
This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

792 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question