As subjcet,
where do you bought your SSL certificate?

Where can I buy it, I need a good certificate well known from the principal browser that doesn't cost a fortune (for now).

Comodo InstantSSL -- $199 for one year, 99.3% browser coverage.

_________________
/ Peter

$199 is way too much. RapidSSL does it for $79, and if you find the right reseller, you can get as low as $10. (As a rule of thumb, you can assume that you're being ripped off it you pay more than $30 for a simple certificate.) Still gives you 99%+ browser coverage, and it's single-root.

How about http://www.startssl.com/ ?
Completely free. And is supported across all browsers.

some domain registrar offer free ssl cert as well; wildcard (*.domain) certs are generally much more expensive.

how it is possible to get a certificate for free?

I got mine for $10/yr, which as far as I can recall is a RapidSSL cert (though the certificate says the issuer is Equifax), from ServerTastic, here:
https://www.servertastic.com/rapidssl/

I switched from a free certificate which I think was from startssl because Firefox tightened their certificate verification and started presenting users with too many confusing dialogs, the commercial certificate eliminated this nonsense.

Regards,

Stephen[/url]

really really interesting, only root certificate,
this means that I cannot use SSL with a subdomain or a subfolder?

I need a certificate for at least 5 subdomains.

single root doesn't mean it's restricted to the root directory see here

http://www.rapidssl.com/ssl-certificate ... sl-faq.htm

On the other hand the certificate in question is a single domain one for subdomains you'd need the wild card certificate ($135)

ok thanks to all replys, if there are some other proposal feel free to post here

If you buy a certificate for domain.com, it only covers domain.com.
If you buy a certificate for www.domain.com, it only covers www.domain.com.
If you buy a certificate for sub.domain.com, it only covers sub.domain.com.
and so on.

Wildcard certificates cover all subdomains, but they cost 8x - 12x more. So if you have 5 subdomains to cover, it might be cheaper to get 5 individual certificates. The problem? You'll need 5 IP addresses.

--> SSL Shopper for prices and comparisons, reviews.

Namecheap does $10 for RapidSSL. They also have cheap Geotrust and Comodo certs. I do the 3 year RapidSSL for $30. If you want the verified (i.e., a phone call / fax to ensure you are the real business owner) it is also pretty reasonable.

I wouldn't splurge on a high-end cert unless you have to. The security technology is exactly the same, and the number of customers that care about a $500 Verisign cert vs. a $10 RapidSSL is probably ~0. Most customers probably don't even notice the https when entering card info.

Some certs will cover both domain.com and www.domain.com. My PositiveSSL cert (free from Namecheap with new domain registration) does this. It uses the Subject Alt Name field.

PositiveSSL doesn't let you set the field manually though, it's all automatic. For example, if you buy a cert for sub.domain.com you automatically get www.sub.domain.com in the SubjectAltName field. Not so handy in that case.