Cheap, yes cheap wildcard SSL?

Discussion in 'The Lounge' started by woodp, Jul 25, 2013.

  1. woodp

    woodp New Member

    Thought I'd poll the community to see if I could solicit some assistance.

    Earlier I found out that for mail over SSL, I need a wildcard certificate. Turns out a standard certificate won't support IMAP's SSL requirement with just domain.com or host.domain.com. I need a wildcard to support both.

    Since I don't run any commerce sites, I really don't care about expensive "badges" or "guarantees." I just want to run Outlook without "security certificate that can't be verified" error messages.

    Standard certs are available in the $25/year range but wildcards start at $100/yr and go up. That's a lot just to remove an Outlook warning.

    Does anyone have familiarity with a low-cost (cheap) wildcard SSL provider?
     
  2. Dave G

    Dave G Member

  3. woodp

    woodp New Member

    Yeah, I like their $7 cert price, but less thrilled about their $85 wildcard price.

    I don't get the 10:1 price differential between standard and wildcard SSL???
     
  4. Dave G

    Dave G Member

    If I had to guess "It's because they can" :) it does seem a little odd, though it is under your $100 from your other supplier.

    Dave G
     
  5. woodp

    woodp New Member

  6. Dustin

    Dustin New Member

    Is that who you ended up going with? How do you like them so far?
     
  7. woodp

    woodp New Member

    Yes, I purchased an AlphaSSL cert but I needed Knownhost help to install it. It was non-standard.

    The Outlook warnings have gone away which was my only concern, so to that end I'd say their offering was suitable.
     
  8. LarsH

    LarsH New Member

    If you want an SSL certificate without warnings that is accepted in nearly all clients you should buy one from GeoTrust or Thawte.

    We bought our certificate here (fast issuance, good support):
    https://www.sslpoint.com/
     
  9. LaptopFreak

    LaptopFreak Member

    Wildcard certs have never been cheap. Good to know that you found yours.
     
  10. Laura Smith

    Laura Smith New Member

    You are looking for cheap wildcard certificate then you should choose comodo positive ssl wildcard certificate, i think its the cheapest among all wildcard ssl certificate, and re-seller also gives the discount on it. One of such cheap positivessl wildcard i found at $63/yr from, https://cheapsslsecurity.com/comodo/positivessl-wildcard.html I think its the secure + cheaper solution to secure multiple sub domains.
     
  11. Mark NYC

    Mark NYC New Member

    @woodp:
    You could also use a multi-domain (SAN/UC) SSL certificate - they are designed for mail servers.

    Not as expensive as wildcard, starting at around $60-70/year for 3 domain names:
    https://www.sslpoint.com/multi-domain-ssl-certificates/

    But be aware that they may get more expensive if you add additional domain names - usually 3-5 host names are included.

    @LarsH
    Agree, +1 for sslpoint :)
     
  12. woodp

    woodp New Member

    Appreciate all the feedback. Thank you!

    But I still don't have a straight answer to the question of *why* I need wildcard in the first place - I only have one IP and all my IMAP email (regardless of email address) passes through host.domain.com. To my way of thinking, host.domain.com is *one* domain. Why is it necessary to install a multi-site cert?
     
  13. Dan

    Dan Moderator

    Hi woodp,

    Your VPS can host multiple domains. When doing so each email client configures for their own mail server.

    So even though all your domains and even your host name reside on the same IP number they all have different names.

    host.domain.com
    mail.domain1.com
    mail.domain2.com
    etc etc

    A multi-domain SSL certificate can cover each one of them so that when a client opens up his email client (IE Outlook) they don't get a popup warning them about the SSL certificate not matching the configured domain name.

    Does that help?
     
  14. woodp

    woodp New Member

    Almost ... If I enforce an SSL-only mail policy (host.domain.com, IMAP Port: 993, POP3 Port: 995, SMTP Port: 465), then can I get away with a single domain SSL cert? Or am I just creating new problems for myself?
     
  15. Dan

    Dan Moderator

    Only if all of your clients for all of your domains configure for the same mail server which is host.domain.com if you put the cert on that.

    At least that's how I understand it. Please someone chime in if I am incorrect.
     
  16. jasonparker

    jasonparker New Member

    This is my first post to forum but i could not stop to write when i read different recommendation from other users. As i have been involved in Information technology, i have had installed various SSL certificates for our clients. To answer your question, i did small research and compared price of wildcard ssl certificate from different vendors like: thawte, rapidssl, alphassl etc! To my surprise, i found that the authorized resellers are offering very huge discount on same certificate. Let me explain in details:

    Look at the price of Alphassl here on this website: https://www.ssl2buy.com/alphassl-wildcard.php that sells the same wildcard ssl at $49 which is around $100 cheaper as compare to AlphaSSL official website http://www.alphassl.com/ssl-certificates/wildcard-ssl.html

    Then i searched for other resellers like Trustico, servertastic, clickssl etc and found that the best place to buy any ssl certificate is their authorized resellers and not direct CA.
     
  17. jennifer86

    jennifer86 New Member

    Basic ssl are dirt cheap, but provide only the minimal amount of security required. I would advise you to get the more advanced one which gives you the "gren bar" in the address bar, so instead of just a padlock, you get a padlock and your company name like Google Inc. Because your company information is verified by the SSL issuing company.

    Greater security.

    SSL is a funny world though, admittedly I don't know much about it, but when I needed a ssl, I contacted verisgn, and they were quoting something ridiculous, upwards of 1K for a ssl, they probably bundled all sorts of additional extras that I didn't need. read more information Cheap Wildcard SSL
     
  18. kitchin

    kitchin New Member

    Doesn't the green bar require a ~$1000 cert? The last time I checked no major browser showed a difference between a cheapo $7 cert and a ~$200 cert *unless* you clicked the lock icon to look at the details. Do I recall it right?
     
  19. phpAddict

    phpAddict Active Member

    To get the green address bar SSL cert it's only $99.99/year through my reseller program at www.PickleHost.com
    However, like most companies (I've yet to find one that does) they don't offer a wild card cert for a green address bar.
     
  20. kitchin

    kitchin New Member

    Cool, glad to know that phpAddict. Except now I can no longer say, "just get the $7 cert!"

    Also, my memory was wrong, I looked back at my notes and had $200 as the cheapest EV back then. Only the crazy Verisign and Thwate pricing was $1000 (I think).
     

Share This Page