and recently got a nice upgrade to https courtesy of Let's Encrypt. Though the official client is pretty slick (GUI based, certificate auto-renewal), I had a few issues with it; Namely, nginx support. At the time of writing, nginx support with the official client is only experimental and involves taking your site offline for a bit while the LE client does its work.

I couldn't get the LE client to work so I ended up using acme tiny to issue my certificates from Let's Encrypt.