Re: [H] SSL and subdomains

2021-02-08 Thread Greg Sevart 
Your options are to buy two certificates (single-entity, one per sub-domain), a 
multi-domain certificate (using Subject Alternative Names for the domains), or 
a wildcard certificate (securing *.somedomain.tld). Some of the cheapest certs 
that are NOT LetsEncrypt can be found at Namecheap - around $9/year IIRC. The 
CA is Comodo (now Sectigo) - not the most reputable CA, but it still enjoys 
broad support in pre-loaded root CA distributions. Perfectly acceptable for 
personal use IMO.

If you want to share the subdomains (or send them to me offline), I'd be happy 
to investigate further.

-Original Message-
From: Hardware  On Behalf Of _ 
Winterlight
Sent: Monday, February 8, 2021 12:59 PM
To: hardw...@lists.hardwaregroup.com
Subject: [H] SSL and subdomains

I wrote about this a few weeks ago. I have a website hanging at Google but 
hosted at Network Solutions. It is a 100 percent personal site that I use to 
post stuff to friends, and business needs. It is not  for marketing and in fact 
I don't want anybody uninvited to view it and have a robots.txt for that 
purpose. I knew that I had to tell my browser to ignore security and proceed 
because it has no SSL Certificate. Chris advised me to use Letsencrypt  but of 
course Network solutions doesn't support it. Network Solutions says you can use 
third party but they will not support but Letsencrypt  says it doesn't work 
because Network solutions won't enable it.

I am stuck with network solutions for the next two years and they did give me a 
good deal on the hosting with email support so I decided I would just pay 
Networks solution... it was on sale for 42 bucks a year and I had to buy 2 
years. Simple, get it done and move on, or so I thought. I didn't realize that 
it would not certify my two Subdomains which are there for emergencies. I need 
them operational more then I need the website opeerational. I immediately 
realized this and was able to cancel because I am not going to pay for SSL  for 
the domain and two Subdomains. which would cost more then my hosting plan.

However, it turns out the two Subdomains, which are extremely simple single  
text page can be accessed without the browser warning or blocking for security 
reasons. I have tried this with friends and various providers on different 
phones and computers. My question is why would the Subdomains be allowed to go 
through without the SSL Certificate or any kind of warning or hinderence? I 
don't get it?

[H] SSL and subdomains

2021-02-08 Thread _ Winterlight 
I wrote about this a few weeks ago. I have a website hanging at Google but 
hosted at Network Solutions. It is a 100 percent personal site that I use to 
post stuff to friends, and business needs. It is not  for marketing and in fact 
I don't want anybody uninvited to view it and have a robots.txt for that 
purpose. I knew that I had to tell my browser to ignore security and proceed 
because it has no SSL Certificate. Chris advised me to use Letsencrypt  but of 
course Network solutions doesn't support it. Network Solutions says you can use 
third party but they will not support but Letsencrypt  says it doesn't work 
because Network solutions won't enable it.

I am stuck with network solutions for the next two years and they did give me a 
good deal on the hosting with email support so I decided I would just pay 
Networks solution... it was on sale for 42 bucks a year and I had to buy 2 
years. Simple, get it done and move on, or so I thought. I didn't realize that 
it would not certify my two Subdomains which are there for emergencies. I need 
them operational more then I need the website opeerational. I immediately 
realized this and was able to cancel because I am not going to pay for SSL  for 
the domain and two Subdomains. which would cost more then my hosting plan.

However, it turns out the two Subdomains, which are extremely simple single  
text page can be accessed without the browser warning or blocking for security 
reasons. I have tried this with friends and various providers on different 
phones and computers. My question is why would the Subdomains be allowed to go 
through without the SSL Certificate or any kind of warning or hinderence? I 
don't get it?