Every site should definitely make use of a secure connection, even if you only have a static website or blog like this one here. Besides other advantages, there’s a simple thing that should be enough of a motivation for you to go SSL: Google will start to penalize websites in their search resuls, which are not using a secure SSL connection. Convinced?
After all, it’s an easy task and completely free thanks to CloudFlare!
Activate SSL with CloudFlare for free!
CloudFlare is an amazing service. Already years ago, they actually introduced a new concept called “universal SSL” - included in their free plan - which allows you to benefit from a SSL connection using a shared certificate.
Here’s an awesome article that guides through the various steps.
You basically add a new site to CloudFlare by entering your existing URL. As a consequence, CloudFlare then scans for the the according DNS configuration and copies them over. After that, simply point to those DNS servers on your domain provider’s admin panel.
Enable redirects with CloudFlare Page Rules
An important part is that you setup proper redirects from your
http:// urls to the new
The redirect rule should look like this:
Remove any “mixed content”
You will get a warning if your website loads “mixed content” which is when you embed external
http:// based resources within your SSL secured
https site. So make sure to update all embeds of external resources (scripts, css,…).
... <!-- option 1 --> <script src="//somedomain.com/..."></script> <!-- option 2 --> <script src="https://somedomain.com/..."></script>
Btw, an easy way to check is to use Chrome. It’ll warn you if you have mixed content on your page.
Migrate Disqus comments
Finally, if you happen to use Disqus as your external comment service, make sure you adjust the callback URL in the Disqus script and finally also migrate the existing Disqus comments over to your new https URL. This can be done easily through the Disqus admin panel:
This is definitely a no-brainer. CloudFlare makes it really easy to get set up and running. Moreover, you won’t only benefit from the free SSL support, but they add a lot of other optimizations on top which will make your site even blazingly fast!
It’s easy and done in minutes. So go for it !