security ssl cert

I am not a security expert, but I began to realize a need to provide encryption on websites. I went over to startssl.com and created an account and a certificate for heroLFG.com. I had a key file, a certification file, and a chain file which I referred to in my ssl.conf file which is included in the httpd.conf file for the apache web server. I went ahead and did a redirect so that http://heroLFG.com went to https://heroLFG.com. I had to update my deployment url with my version control system. And I had to update my global DOMAIN variable to use https instead of http. I have the nice little green padlock for now. I imagine that no security system is perfect. But it does help to provide some kind of deterrent.