Run SSL anywhere

[ISOS6]

Can I run ssl anywhere?

Can someone explain to me how good or bad is to run everything through SSL? In this case, phpmyadmin, Webmail, Directadmin for all users. I have no problems doing it, but it's good all encrypted?

 

[nobaloney]

You can run everything through SSL. One problem is that you can only have one SSL Certificate for any given IP#/Port# combination. So if you run SSL for each user, the users will have to agree to accept a certificate that's for the wrong domain, or you'll have to tell them to login to DirectAdmin (or webmail) for example, using your servername instead of their domain name.

Another issue with SSL, probably not as important on today's high-speed internet, is that SSL traffic is a bit slower (because encryption and decryption both take some time and also because the encrypted data cannot be effectively compressed so it takes longer to send), and since your browser won't cache text or images sent over SSL, it'll take a bit longer for it to render each page (for example, in DirectAdmin, all images will need to be resent).

All that said. I recommend it. I do it.

Jeff

 

[ISOS6]

Thanks Jeff!

I know that each domain name need own SSL Certificate.

I have made so that what they had to use the webmail, phpmyadmin and directadmin will be forwarded to the server's domain with SSL Certificate. So it is done!