Starting today, all WP NET Managed WordPress hosting plans include support for
Update 19 August: We’ve decided to rename our FreeSSL feature to AutoSSL!
All customers on MWP2 servers are now able to install Let’s Encrypt certificates and convert their site to use the
This move is largely in response to recent changes in many of the major web browsers and how they display non-HTTPS websites. You may have heard recently that the Google Chrome browser will now display “insecure” in the address bar when viewing any site using HTTP. These changes are further driving the move towards SSL / TLS encryption for all websites.
Effective today, the Starter + SSL hosting plan is retired and all customers on that plan have been crossgraded to Starter 1GB. All customers who were previously on the Starter + SSL plan will have their next account reduced to the $29 per month ($319 per year) price.
Converting your site to HTTPS
Converting your site is pretty straightforward, just login to the Plesk Panel, go to the Security Advisor and follow the steps to install a Let’s Encrypt certificate and convert your site to use the
We’ve got a lot of exciting new features and updates to announce over the next few months, and first up is…
That’s right, all customers with WP NET Managed Cloud VPS servers can now use SSL on their websites at no cost! You never need to bother with generating CSR’s, processing renewals or installing certificates … ever! It’s all completely automated.
New and existing Managed Cloud VPS customers can start using FreeSSL right now. For details on how to activate FreeSSL on your Cloud VPS websites, please see our KnowledgeBase article. (Note: you must login to the My WP NET customer portal to view the article)
What is Let’s Encrypt?
Let’s Encrypt is a new SSL Certificate Authority on a mission to make encryption standard across the web. Let’s Encrypt is sponsored by industry, including: Mozilla, Google, Facebook, Sucuri, CISCO and more. You can read more about Let’s Encypt on their website.
In a nutshell, Let’s Encrypt provides browser-trusted SSL certificates completely free. Provisioning and renewal is automated via the Let’s Encrypt agent software installed on the host server.
You may be asking yourself …
I’ve posted about this on our Announcements page, but thought I’d mention it here too — all WP NET servers have been patched and tested as safe from the FREAK Attack SSL/TLS bug. We actually installed patches and tested a good couple of weeks ago, so we’ve been secure for sometime now.
The FREAK Attack affects browsers as well, so you should test all the web browsers you use.
All our servers now have SSLv3 disabled to mitigate the recently revealed SSLv3 vulnerability, dubbed POODLE.
WP NET servers are NOT vulnerable to the POODLE attack.
Please note that this issue affects both servers and browsers, you should disable SSLv3 in your web browser as soon as possible.
For help with disabling SSLv3 in your browser go to: zmap.io/sslv3/browsers.html or scotthelme.co.uk/sslv3-goes-to-the-dogs-poodle-kills-off-protocol/
For more information about the POODLE vulnerability, please read the following references:
We are continuing our efforts to make security improvements to our hosting systems where ever possible.
Posts tagged with ‘ssl’