That's a good question. I'm not sure what is the right answer. I'll do some Googling and get back to you if I got an good answer. You should email the people at iPage as they probably could give you help..
The only visible difference in the two is the URL during the checkout process. Using their shared SSL, the checkout process will show a URL in the address bar of the browser 'https://yourisp.com/youraccount/oscommerce/checkout'. If you have your own certificate, then the address bar will stay within your iPage domain realm, 'https://yourdomain.com/oscommerce/checkout'. Either way, the SSL certs should recognized by your average browser, only some browsers may throw up a warning that they are being redirected to another site, but I don't think that is default for most browsers and has nothing to do with SSL. Those messages are triggered if the option is set when any form is being redirected, not just SSL forms. But is the buttons/links in osCommerce that goes to the checkout process forms? That is the question.
I recomend getting your own SSL but you can get rid of the message by using the shared ssl url for both..
So if you have....
And did it like this....
When a customer enters the iPage site the url will be 'http://www.mystore.com'.
When they click buy now the url will be 'http://www.mystore.myhost.com'.
When they click checkout the url will be 'https://www.mystore.myhost.com'.
I didnt try this with oscommerce so it might need some tinkering..
Where do I enable for https? what page should I change?.
Luc's Music: where can I get the $50 cert to buy. any recommendations?.
Posting links is considered spam on the forums. However, if you do a google search for "free ssl" you can find it. I would advise you to buy from a company that owns their own root certificate. The company I'm thinking of is actually having a sale right now - you can get a single root certificate for only $35..
Keep in mind, I'm far from an expert. This is just what I've found from browsing around the web...
Being a newbie to SSL, I have no clue how it works. my ISP has shared SSL and also has the option to have you own dedicate ssl. What is the difference? Does shared SSL pop up those annoying security warnings about certificate mismatch?.
If I want to buy my own cert, what should I buy? Can I buy one of those chainned ssl that goes for 20 bucks or so?.
Advice would be appreciated...
If you have your own SSL certificate, issued to you, signed by a standard certifying authority (probably not the $20 version) and it's not expired, then the little warning window will not pop up. You can get a certificate like this for under $50 for a year...