InMotion Hosting Support Center

lets encrypt ssl certificate

Category: Ssl

imokweb
Asked:
2017-03-01 7:33 am EST

Hits: 3,603
Hello
I would like to install a Let's Encrypt free ssl certificate on one of the websites that is administrated on your servers, and I was wondering if this is possible?
Thanks

You must login before you can ask a follow up question.

You must login before you can submit an answer.

OTHER ANSWERS

-3

Arn
Staff
42,973 Points
2017-03-01 10:21 am EST
Hello Imokweb,

No, we do not currently offer Let's Encrypt on reseller or shared servers. I hope that helps to answer your question! If you require further assistance, please let us know!

Regards,
Arnel C.

You must login before you can post a comment about this answer.

Hi Arn,

Any planned support for Let's Encrypt?
Kaptcha
3 Points
2017-03-14 12:02 am EST
Not at this time.
Tim S
13,821 Points
2017-03-14 8:04 am EST
I believe we can install it manually through SSH but they don't provide 'native' support for it.
rami.m.alloush@gmail.com
3 Points
2017-04-01 1:39 pm EST
0

halbrooktech
2017-04-03 2:04 pm EST
That you guys are still fighting against providing Let's Encrypt instead of adding it already tells me I may have chosen poorly when I decided to join up with your services. As much as I hate to, looks like I need to start looking at my other options again. This is frustrating that Google's starting to use SSL as a factor, and in spite of the support behind LE you won't provide it.

You must login before you can post a comment about this answer.

You can install Let's Encrypt SSLs on our servers at any time. We have not blocked any usage of the product. Our VPS and Dedicated have the capability to issue SSLs using the AutoSSL tool. Let's Encrypt can be added to that as a simple package install.

While we do not yet have the 'quick issue' plugin installed for shared, any customer can still install Let's Encrypt SSLs for free via the cPanel.

Free SSLs still have their own issues, as discussed all around the web where Let's Encrypt has issued 15,000+ SSLs to paypal phishing sites.

It is likely better to check into EV level SSLs, which require the site owner to go through extended validation. These are more costly, but have better validation than the free SSLs that are becoming so prevalent.

With enough bad issuers, customers will not want trust basic SSLs and, given time, Google may also take some sort of action such as distrusting certificates by those issuers.
scott
43,761 Points
Staff
2017-04-03 2:43 pm EST
I've never seen it clearly stated that that would work, it's always been hit or miss on how the question was broached.

I understand the security side concerns, but that's always been a risk, granted it's elevated with Let's Encrypt, but Caveat Emptor applies as much, if not more, now. It's up to the financial institutions, browser vendors, and even us who develop/ run websites to educate the end users. Unfortunately, if there's one thing life teaches us, most people don't care enough about their security to even pay attention when we do try. Which leaves us with the browser telling people "Not Secure" and the end user freaking out, because what does that mean. In the case of My church's site, for instance, we collect no information from end users on the site. We have a donation page, but that's an embedded form from another site, and thankfully the browsers do better on showing that fact now.
Let's Encrypt needs to do some self-policing, and since Google & Firefox are involved, I suspect these phishing sites will lead to improvements in how both the browsers and the CAs handle that, unfortunately, not before they all started making a big deal over "Not secure".
halbrooktech
25 Points
2017-04-04 5:08 pm EST
Free SSLs are best used for people making small websites and those people often use shared hosting plans.

If enough webhosts do not provide easy access to free SSL like let's encrpt, then yes, they will have a much higher percentage of phishing sites using them. But the more web hosts that provide easy use of services like Let's Encrpt the more trustworthy it becomes.

Because InMotionHosting doesn't allow the autoconfiguration of Let's Encrypt, they are adding distrust of certificates by that issuer, the very thing scott is claiming Google may end up taking action because there won't be enough honest websites using their certs because mostly shared hosting websites would use those certs.
nickb
3 Points
2017-06-17 10:53 pm EST
Like this Question?

Forum Login

You are NOT logged in. You can still browse our Support Center.

To participate within our Community Support Forum:

Need more Help?

Ask the Community!

Get help with your questions from our community of like-minded hosting users and InMotion Hosting Staff.

Current Customers

Chat: Click to Chat Now E-mail: support@InMotionHosting.com
Call: 888-321-HOST (4678) Ticket: Submit a Support Ticket

Not a Customer?

Get web hosting from a company that is here to help. Sign up today!