SSL has always been a good idea but has always been a hassle to configure, and can be expensive. If you run a number of websites like I do, then SSL is easily the most expensive piece of the puzzle, so most of us forego securing the pipe like we should.
Riding to the rescue is LetsEncrypt!
LetsEncrypt solves the issue of SSL certificates being expensive, but doesn't so much to solve the "hassle to configure" issue. Oh well.
To use LetsEncrypt, follow the instructions here...
There are rate limits to the service, as discussed here, but if you aren't developing a client for the service then you won't likely have any issues with limits. If you are developing a client, then use the staging service, which is unlimited.
I'll be exploring generating a new SSL certificate and deploying it to an Amazon S3 instance that I am developing located here. I'll cover that later in this series of articles.