| > I'd be interested in reading that discussion if you have it handy. Sure. It was a discussion [0] of an article by Troy Hunt entitled "On the Perceived Value of EV Certs, Commercial CAs, Phishing and Let's Encrypt" [1]. (There have been a few other recent discussions [2,3] that also mentioned EV that you might be interested in.) > I've been looking into SSL recently for some personal sites and the easiest method has been a combination of GitHub pages / Cloudflare. That seems to be a pretty common setup (for "easy"), as well as static sites on AWS S3, etc. Most of my sites run WordPress on my own (physical) servers so I can't personally comment on those methods. > ...aren't EV certs just a cash grab by the issuing authorities? That seems to be the popular opinion (at least here on HN), though I can understand the desire to use EV over DV in certain situations. [0]: https://news.ycombinator.com/item?id=14805233 [1]: https://www.troyhunt.com/on-the-perceived-value-ev-certs-cas... [2]: https://news.ycombinator.com/item?id=14749565 [3]: https://news.ycombinator.com/item?id=15221119 |