Posts Tagged ‘HTTPS’

SSL + website rankings

I read this: HTTPS as a ranking signal. You should then also read this: My blog doesn’t need HTTPS.

Frankly, I agree with Dave Winer here – blogs and many websites/publications don’t need to deliver content over HTTPS. For Google to say they are going to use this as a signal for PageRank, is kind of nasty. 

SSL on sites is also likely to spur IPv6 further – many SSL sites, especially e-commerce (whom I think need SSL), need to have a unique IP per site. Soon we’ll have blogs require an IP/site. Of course, there are workarounds to this, but not all web browsers support this.

You can then see that sites like Cloudflare tell you that this is now provided with their Pro plans – a great way to start charging free accounts. You can also get your own SSL certs (which you’ll have to add on as a yearly fee), and then maybe pay more for hosting…

For testing, use Why No Padlock? and Qualys SSL Labs SSL Server Test.

HTTPS for Twitter & Facebook – enable it!

Use Twitter? Want to use HTTPS where possible, to prevent accessing it over plain HTTP, and getting “tweetjacked” by FireSheep users? Twitter now allows you to use HTTPS wherever possible. A good start. Its accessible in your account settings.

Twitter  Settings

Use Facebook? Want to use HTTPS where possible? Account -> Account Settings and look at Account Security. Again, you can enable HTTPS. Very cool.My Account

I don’t know how I missed this, but I encourage everyone to enable HTTPS, especially since I see the most common website at cafes, restaurants and other public places that are being accessed tend to be Facebook. I was at the KL Facebook Developer Garage (KLFB) at the end of February 2011, and I saw two speakers get fake updates on their Twitter & Facebook profiles, so I’m guessing this is not very well publicized.

Go, spend a minute, and enable HTTPS.