Back in the bad old days, setting up basic HTTPS with a certificate authority cost as much as several hundred dollars per year, and the process was difficult and error-prone to set up. Now we have Let's Encrypt for free, and the whole thing takes just a few minutes. Why Encrypt? Why encrypt your sites? Because unencrypted HTTP sessions are wide open to multiple abuses: Eavesdropping on your users Capturing user logins Injecting ads and "important" messages Injecting spyware Injecting SEO spam and links Injecting cryptocurrency miners Internet service providers lead the code-injecting offenders. How to foil their nefarious desires? Your best defense is HTTPS. Let's review how HTTPS works.

The link for this article located at is no longer available.