Chapter in this post:
The topic of SSL / HTTPS and WordPress has been in the back of my mind for months, because Google had a long time ago officially announcedthat the encryption of a website with an SSL certificate is a ranking factor for Google. In practice this means: If your website is accessible via https instead of http, then Google will rank your posts and your website better.
I've been dealing with the topic for a few months now, but unfortunately there is no simple solution to convert your website or WordPress blog to https. Either you use a hosting provider who will set this up for you - but that usually costs from 50 EUR / year or more - or you use certification authorities like freessl.comto create a certificate there, which you can then deposit with the hosting provider.
That sounds simple, but in practice it is a complex task because you have to generate various keys that you then have as text files. These must then be stored somewhere on the server with a specific name and some of the data must also be entered in a form. If something is wrong with this, it doesn't work and you can look for the fault. If you did manage it at some point, you have a year of rest and then the certificate has expired and you have to generate a new one. The whole stress starts all over again - and that for EVERY domain that you want to encrypt.
I'm really not a technology dummy, but this hic-hack stopped me from continuing. Problems are easy to foresee: What happens when the certificate expires and I'm on vacation? A website with an invalid certificate causes every visitor to see a pop-up warning that this website is not secure. Who then clicks on "Next" and puts an exception for an invalid certificate in the Browser on? I think nobody. The result would be that from now on you would simply have no more visitors. Within a few days, the Google rankings would certainly drop and the domain would be permanently damaged.
For this reason I said to myself: I only start with SSL when three important conditions have been met:
It became all too clear that private website operators and bloggers do not really like to use SSL, because there are hardly any blogs that have converted their website to https with an SSL certificate. For several years now, a service has been set up that has made it its mission to make the whole thing easier in order to motivate more webmasters to use SSL encryption to make the Internet more secure. The name of this association of large companies: "Let's encrypt".
The service is now in the beta phase and issues certificates. In principle, this is nothing new, but the Let's encrypt certificates are extended automatically, cost nothing and are also very easy to integrate - depending on the hoster.
Anyone who has read more here will know that I am a friend of the All-Inkl.com hosting am I have been using hosting for many WordPress blogs and also for customer websites for years and have only had positive experiences. The support is great and the prices extremely good - I often wonder how they do it. :)
For a few days now, All-Inkl.com has been offering the option of installing a Let's encrypt certificate for every domain free of charge in the hosting packages from Privat Plus. The process is easier than I could have ever dreamed of:
All-Inkl.com does the rest in cooperation with Let's encrypt. The certification data CSR, KEY, CRT and bridge certificates are created and entered automatically. The SSL certificate is installed and working within a few minutes.
Something like that shows me: modern technology doesn't always have to be complicated. When the right people get together and want to change something, sometimes great things come out of it. With this simple solution, there is no longer any reason not to switch your website or WordPress blog to https.
So, unfortunately I have to go ahead and click certificates. :)
And if you are still with another hoster who is still on "complicated", think about whether you might not switch to All-Inkl.com. I have Here is a longer experience report on WordPress hosting from All-Inkl.com written - maybe it is interesting for you.
Jens has been running the blog since 2012. He appears as Sir Apfelot for his readers and helps them with problems of a technical nature. In his free time he drives electric unicycles, takes photos (preferably with his iPhone, of course), climbs around in the Hessian mountains or hikes with the family. His articles deal with Apple products, news from the world of drones or solutions for current bugs.