Strong opinions, weakly held

Why your site should use HTTPS

Private By Default

Tim Bray suggests that every site should use HTTPS and explains the ins and outs of making it happen.


  1. StartSSL has free certificates. I’ve not used them (yet).


  2. One issue he didn’t address: Using HTTPS on your site will lead to mixed security warnings if you’re embedding content from non-HTTPS sites. Until quite recently, that included AWS.

Leave a Reply

Your email address will not be published.


© 2019 rc3.org

Theme by Anders NorenUp ↑