I installed discourse ready vps on digitalocean. My website works on https. Free lets ssl i guess. Is it really safe? I also bought comodossl. When i want to create certificate on comodo panel. It asks me my CSR code. How can I create CSR? Or do i do something wrong? First time I am doing. Please direct me.
There’s no difference from a security perspective between Let’s Encrypt and Comodo. The encryption supported is the same. The only difference is that one is free and automatic, the other costs money and must be renewed manually. Unless you have a really, really good reason to need a paid cert, stick with Let’s Encrypt and save yourself the headache (and some money).
*Well, mostly. Certs can be DV (domain validation), OV (organization validation), or EV (extended validation), differing in what they validate (and, naturally, the cost). A DV cert validates that it does in fact belong to the domain it names. An OV cert validates that it belongs to the organization it names (though nothing shows you this in a browser unless you drill down to the certificate details). An EV cert does the same thing as an OV cert, only more so–and historically has given the “green bar” in the browser, though that’s going away shortly. No variety of cert validates that its owner is a “good guy,” and there’s absolutely no difference in encryption levels among them.
Hence my saying “historically.” It’s gone away in Chrome, but it’s still there in Firefox and IE (the only others I can readily test at the moment).
Agreed. It will be interesting (and alternately amusing and frustrating, no doubt) to see what other selling points the CAs come up with to try to sell them, though.