Domain Parking in the Era of “Not Secure” Warnings

Google Chrome will start showing a “Not Secure” message from October 2017 when a form is filled in a regular HTTP page. This will affect many parked domain sites that have a contact form (there is a post about this at DomainNameWire.Com).

Buying SSL Certificates for all the domains, even at the low $3-$5 price range,  is not a great solution when your portfolio contains hundreds or thousands of domains.

Fortunately there is a free option.

Let’s Encrypt is a free, automated, and open Certificate Authority that provides free and renewable 90 day SSL certificates. With a little bit of help from scripts it is also possible to automate the issue and renewals of the SSL certificates.

You can use Let’s Encrypt to create a single certificate that will support upto a 100 domains. There is also no need to have a unique IP address for each site (though this will not work for end users with XP + IE systems).

There are some problems when using SSL for hundreds of domains. For simple HTTP parked pages one could simply point all the domains to a standard web page / script and then use a single web server configuration. With HTTPS a separate web server configuration is required for each domain. This will make the job a little complicated when you have hundreds or thousands of domains to configure.

There are some rate limits on the certificates that are issued by Let’s Encrypt. Please see the details here.

You may need to contact your hosting provider to get them to support and install Let’s Encrypt certificates. If you are on a VPS or dedicated server and have root access you should be able to do this yourself.

Watch this space and domainpunch.com for additional hints and help on this.