some help with HTTPS and SSL

[David]

Hi, i'm finishing my site with KonaKart, now I'm trying to use HTTPS.

I saw the FAQ section and I changed the options to enable HTTPS (http://www.konakart.com/configurationfaq.php#SSL).

When I try to log in I can see the certificate, but it expired months ago. I wonder if somebody could explain how to change that certificate and put another one with my info.

Regards

David

[pete]

Hi David,

You can find lots of guides on the web for this eg. http://tomcat.apache.org/tomcat-4.0-doc/ssl-howto.html

I expect you might want to buy a certificate (?)

Good news that you're close to finishing your site!   Please send us a link!

Regards,
Pete

[David]

thanks for your help Pete,

Now I'm looking for prices of certificates, but their are too expensive. I'll think if I need to buy one or if I can use just an unsigned certificate.

ok I'll send you a link of my site when it'll be finished, I hope you like it 

Regards,

David

[pete]

Hi David,

You can create one yourself for free - such as the one we ship with KonaKart.   

That wouldn't be acceptable for most people but maybe this would be OK for you..?

I look forward to seeing the site!

Regards,
Pete

[Burz]

David,

I am just learning about cert installation myself. Its going to be a challenge having a typical hosting service do this for Tomcat, I think.

As Pete said, you can generate your own cert, although people who don't know you personally have no reason to trust it (because its self-issued and not backed by a certificate authority). Its the certs that are backed/issued by a CA that cost money. I think Godaddy.com has low prices (about 1/5 the cost of other places) and they aren't tied-in with the dodgy Verisign juggernaut (the rest of the CA brands are owned by Verisign).