We could easily supply the method as WSO e-book, but that is not what we want – we do not want to make money out of the method. This is legally right exploit of too much aggressive marketing by shared hosting providers. We will not mention any name of company or business. You need to find, assume, guess – in other words, keep your eyes widely open and read every line of this guide carefully.
How To Get Valid Free SSL Certificate For Domain : Why It Is Legal?
Because you are not breaking Service Level Agreement with the Certificate issuer and you are domain owner. As Domain Name, Name Server, Server and SSL can not be forced to get bundled, basically the domain owner always hold the right on any purchase of a SSL certificate. It is only for education purpose or for the need of internal usage. You must read the terms and conditions. In other words, this is a valid way; but possibly it is better not to abuse much. Plus, if you are using a good server like that from Rackspace, Amazon – you always have the point to claim – “I decided to move to their shared server first to save money, but the quality appeared to me as bad. So I reverted back my decision.”
We discovered it accidentally. We really had no intention to find a flaw. We ourselves are using everything 100% white. Indeed this is a non-encrypted page.
---
How To Get Valid Free SSL Certificate For Domain
Find any Shared Hosting Service who provides free SSL certificate and run AdWords Ad to give $14.00 hosting for one cent for the first month. We will not disclose the names of the shared hosting providers. This is a missing link to save ourselves from being sued. We can not advocate to run exploit mentioning real business names.
Change your domain technical contact to non domain named email. This is an optional step but ensures the Shared Hosting provider can not illegally read your emails. Add additional DNS of that Shared Server. It will not harm page serving. DNS will always point towards the right server. Now activate your Free (but otherwise would be paid) SSL certificate. You will receive emails to agree to the terms of the SSL Certificate Issuer. Approve it.
Copy the Order Number. This is the only thing which you probably should not know – because it is the Shared Hosting Service who is ordering the SSL certificate behalf of you. But the legal catch is – they can not agree for you, you are the domain owner, you must receive the email and proper link.
Now login to your server, create a directory (so that you can remember) :
|
1 2 |
# pwd will show /root in most cases mkdir -p myssl && cd myssl |
Generate the required materials :
|
1 2 3 4 5 6 7 8 9 |
openssl genrsa -out domain-name.com.key 2048 # change domain-name.com openssl genrsa -des3 -out domain-name.key 2048 # change domain-name openssl req -new -key domain-name.com.key -out domainname.com.csr # change domain-name (two instances) # provide FQDN as www.domain-name.com ; # most moron still thinks appending # www subdomain is mandatory |
Open the CSR file with nano :
|
1 |
nano domainname.com.csr |
Open your that email from SSL supplier who asked you to approve the cert. Order ID – recall – copy it. Click to login and reissue. Copy paste the the things from CSR. SSL supplier will send you the “premium” stuff. It is valid for one year.
Again you’ll have to agree with the terms of usage of SSL. Revert all – remove the DNS record and close the hosting account on next month. Legally you have no binding with that Shared Hosting Provider. Your relationship is with the SSL Certificate issuer, as far my idea of marketing goes, they will never disqualify your certificate – you are their customer ! Actually we are using one year for free. Next year, you have to pay to stick with the same provider. Obviously, you can try to find another Shared Hosting provider who is running aggressive marketing.
Install the SSL certificate on your server.
Tagged With Really Simple SSL failed to detect a valid SSL certificate