Is using SSL really necessary for non transaction webstie?

  • We all know keeping things secure is the way to go.. but just wondered if on a website that is not taking any personal info or payments, is SSL necessary or overboard to simply secure admin… or should we be doing this as a matter of necessity?

Viewing 2 replies - 1 through 2 (of 2 total)
  • Moderator Jan Dembowski

    (@jdembowski)

    Forum Moderator and Brute Squad

    You use SSL for what you want to protect. I dislike passing login credentials in the clear for anything so I use this in my wp-config.php file.

    `
    define(‘FORCE_SSL_LOGIN’, true);
    `

    That way the POST of my userid and (more importantly) my password is transmitted using SSL encryption. The rest of my WordPress blog transactions are all in the clear, I’m less concerned about that data.

    https://codex.www.ads-software.com/Administration_Over_SSL

    Jan is right, with WordPress if you are not collecting any personal data the only page(s) you may need protected are the Admin pages. If you already have an SSL then it wouldn’t hurt to set up your site with it as it may make your visitors feel safer, but if no personal data such as credit cards, passwords, addresses, etc. are being shared then it isn’t really necessary.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Is using SSL really necessary for non transaction webstie?’ is closed to new replies.