AS4 | Evan Hoose

Why I don't use HTTPS, and why you should.

Well. I'm still fairly new to this whole blogging mess, but lets give this a shot.

if there are any comments, suggestions, hate mail etc., please direct it to evan.g.hoose (at)

Why I don't use https.

Let me start this out by saying, you should almost certainly use https for your site. There are very few good reasons to not do so. If you are unaware of these reasons, please view the second half of this post. Back? Cool, let's move on.

I am a member of the Church of Jesus Christ of Latter Day Saints. As part of our faith, most young men go on a two year mission, leaving somewhere between the ages of 18-22. I intend to leave in the near future, and as such I need to automate and simplify my websites hosting so that it will stay up while I am gone.

In order to keep things simple to automate, I am currently forgoing any encryption on this

Why you should use https.

There are multiple extremely good reasons to use https, even if you don't handle payments via your site.

  1. Google rankings.
    Google rates sites with HTTPS higher/gives a penalty to sites without HTTPS. No, Google doesn't rule the internet. However, it does rule consumer mindshare. If you care about your site being discoverable organically, HTTPS becomes a must.

  2. First impressions matter.
    Almost every web browser will mark a site using http with symbol that rightly scares the average user.

  3. It's incredibly easy. In today's day and age, there are very few legitimate reasons to not include https. Let's Encrypt makes it trivial to set up trustworthy encryption for your site, for free. Unless you have some technical reason not to, which you probably don't, you should just set it up. It only takes 15 minutes.