FAQ - NearlyFreeSpeech.NET

Yes.

We support modern/secure TLS using certificates issued by the authority of your choice. You are welcome to generate and use your own key and obtain certificates for aliases in any domain name you own, or you can have us do it for you for a small fee, or you can use streamlined tools we provide that work with the Let's Encrypt project to secure your site.

TLS on our system is implemented using the SNI (Server Name Indication) extension of TLS. This has widespread support, but somewhere out there on the Internet, some ridiculously obsolete browser or ancient device with outdated firmware can't handle it. If you have a requirement to support old, known-insecure versions of SSL, we cannot meet that requirement.

Our implementation of TLS has not been audited for and we do not support its use for the following:

PCI DSS compliance for credit card processing. (Use a third-party processor; we're very happy with Stripe.)
HIPAA compliance for sensitive medical information. (There's paperwork. Lots of it. You need a specialized — and very expensive — provider who can help prepare your compliance documents.)

Frequently Asked Questions

The NearlyFreeSpeech.NET FAQ (*)

Technology (*)

Do you support PHP? FastCGI? SSI?

What database software do you support?

What common web applications and frameworks work with your system?

Do you support TLS for member sites?

Can I use .htaccess files to customize my web server configuration?

May I install other types of servers that are not web-based?

What type of control panel do you use?

What software can I use to access your system?

What are the most common things that do not work on your system?

Why don't you offer static IP addresses?

Does 'NearlyFreeSpeech.NET DNS' support subdomains?

What is your hosting network like?

How big is a gigabyte?

How many MySQL databases can I have?

What sort of spam protection does your email forwarding provide?

What kind of hardware and OS will my site be running on?

Do you support IPv6?