There are ways of doing that without sacrificing security. Making TLS a paid-onl... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

nsgi on March 21, 2017 | parent | context | favorite | on: Announcing Free and Automated SSL Certs

There are ways of doing that without sacrificing security. Making TLS a paid-only feature makes no more sense than making CSRF protection a paid-only feature.

hamandcheese on March 22, 2017 [–]

On Heroku, TLS is enabled if you use the *.herokuapp.com domain, even on free plans.

So really they are charging you if you need a custom domain and security (i.e. Something most businesses do need and most hobbies don't).

Seems a like a reasonable and fair way to segment their market to me.

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact