Question re: http to https

I have a large http site - it's been up 25 years, so lots of pages/images with http addresses.

How much would I expect to pay someone with a brain and experience to make my domain https? And who should I be talking to?

(If I tried it, I would fail and the entire World Wide Web would probably crash)

TIA

Do you know what platform your site is hosted on? Sometimes it can be relatively "easy" if there's a control panel like cPanel but could be worth speaking to your hosting provider if all this alien to you.

Don't let somebody try to charge for you the SSL certificate which underpins HTTPS - Let's Encrypt and Zero SSL both issue them for free. They need renewing every 90 days but that can be done automatically if setup correctly.

Fairly easy to do and happy to have a look for free providing your hosting gives your free SSL Drop me a PM.

If you register free with cloudflare, you can have it automatically redirect to https irc

Cheers, I'll check them out.

Yeah usually free these days for a shared certificate. Or use cloudflare, takes two minutes to set up.

Some people can't access my site as it's not https. And if I try and link to a photo online this is what happens:

Interesting, over zealous security. It’s not like you’re submitting any data or such.

But the site is leaving itself vulnerable to MITM content injection when unsecured. And that content could be anything, from annoying adverts added by your coffee shop's free WiFi service, to malicious JavaScript orchestrated by Governments annoyed that their citizens might bypass restrictions on what they deem acceptable viewing.

That's how China managed to DDOS Github using their Great Cannon attack tool - it weaponised visitors of unencrypted sites, inserting malicious JavaScript. Those visitors unknowingly became attack vectors.

No excuse not to be using https these days.