moose-en-a-gant Posted February 5, 2015 Share Posted February 5, 2015 I'm just wondering how the self-signed certificates compare to company issued ones like by GoDaddy Where do you notice a difference, if you "self-sign" are you in essence "faking" a security? Or what? I mean what makes an HTTPS certificate given out by GoDaddy "legit" ? I may need more SSL certificates and I'm not sure if I want to buy them for like upwardly approximated at $100.00 each Quote Link to comment https://forums.phpfreaks.com/topic/294416-https-self-signed-vs-company-issued/ Share on other sites More sharing options...
CroNiX Posted February 5, 2015 Share Posted February 5, 2015 (edited) Self-signed certs are secure. They are just certs. The difference is they aren't VERIFIED by a 3rd party to ensure you (the website) are who you say you are. So modern browsers will yell about that. When getting a cert from godaddy or other 3rd party, they certify who you are and has been verified by a trusted source. http://webdesign.about.com/od/ssl/a/signed_v_selfsi.htm Edited February 5, 2015 by CroNiX Quote Link to comment https://forums.phpfreaks.com/topic/294416-https-self-signed-vs-company-issued/#findComment-1505009 Share on other sites More sharing options...
moose-en-a-gant Posted February 5, 2015 Author Share Posted February 5, 2015 Do you happen to know if this applies to websockets? As in, if I use a self-signed certificate, will that take care of security issues concerning websocket connection? Thanks for your response. Quote Link to comment https://forums.phpfreaks.com/topic/294416-https-self-signed-vs-company-issued/#findComment-1505012 Share on other sites More sharing options...
CroNiX Posted February 5, 2015 Share Posted February 5, 2015 I really don't know. If it's coming to/from the browser than most likely. I haven't used sockets like that so am really unsure. It does affect things like CURL requests, if the cert is self signed. You have to set extra options to ignore that, so it's entirely possible sockets might have something similar. Quote Link to comment https://forums.phpfreaks.com/topic/294416-https-self-signed-vs-company-issued/#findComment-1505021 Share on other sites More sharing options...
moose-en-a-gant Posted February 5, 2015 Author Share Posted February 5, 2015 Okay thank you Quote Link to comment https://forums.phpfreaks.com/topic/294416-https-self-signed-vs-company-issued/#findComment-1505024 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.