By mwu on

I want to get a SSL certificate. I'm noticing that a lot of websites use certificates that are not recognized in my firefox browser. I feel like my only option is Verisign for $800 if I don't want a lot of users to get a "cannot trust this site" and "certifcate authority not recognized" warning. I'm wondering if anyone else has found a SSL not issued by Verisign that seems to be widely/universally recognized. I know there are hundreds of companies, and the cheapest ones are about $35, but I hope to get a recommendation from someone on Drupal.org rather than a recommendation from someone I know nothing about.

can you tell me which company's certificate you are using? I'm thinking I might find all the bigger enterprises here all just use Verisign.

Categories: Drupal 4.7.x

Comments

anner’s picture

anner commented

You should be able to get a verisign certificate for $300 if all you are doing is running https. That is what all larger companies appear to use in my experience.

cannedbrain’s picture

cannedbrain commented

Certificates that aren't recognized are usually 'shared' between more than one virtual hosts (one SSL certificate can only represent an IP). It does not affect the security of the transmission itself. If you don't want your customers to see that message, you need to get a dedicated IP from your webhost.

mwu’s picture

mwu commented

while it's true that a shared ssl certificate will get that message, i think certificates from most companies also give that message. for example, certificates from godaddy are recognized in IE but not firefox.

cannedbrain’s picture

cannedbrain commented

Hmm… Could it be IE is setup to whitelist certificates from GoDaddy (and some other companies)?

mwu’s picture

mwu commented

each browser has such a list.

you are supposed to be able to edit the SSL settings for the browser and add companies yourself. however, I thought I correctly added Thawte in firefox (7 Thawte companies), and the certificates were still "not recognized"