Yesterday I put in an order with a provider for a VPS. When I got the 'Your New VPS Is Ready' e-mail, it contained a linked to the non-ssl port of SolusVM (5353). I always get an uncomfortable feeling at that point. Because according to @soluslabs SSL is on by default and it should always go there. There must thus have been a reason for this provider not to redirect customers there. When I went to the SSL URL I found an invalid certificate (surprise, surprise).
This is the third provider in 6 months I've had this issue with. I don't want to have to explain to them every time why this simple and yet powerful measure for a little more security is a must-do.
Several questions:
1. Is it so damn hard to buy a $15 SSL certificate to provide all of your customers with secure access to the control panel?
2. Is there any good reason why you would not put an SSL URL in the WHMCS e-mail template?
3. If this simple security measure has not been taken, what else could be wrong?
4. Who else is bothered by this/has had this issue with providers?