I was working on integrating a custom iframe tab in a Facebook app, and was having a lot of trouble displaying it to users browsing FB with SSL enabled. I don't have a server with an SSL certificate, and didn't want to pay for a new host or bother with getting a certificate.<p>You know who does have an SSL certificate? Dropbox. It's certainly a hack, but you can serve the iframe document from your public folder, and it works really well. There are bandwidth caps (10GB/day unpaid, 250GB/day paid - https://www.dropbox.com/help/45), but it could be a great solution for some situations.
Neat hack, but certificates can be had for free nowadays[1,2].<p>[1] E.g. startssl.com.<p>[2] Of course, this means that the CA system is broken - you can't do any serious validation for $0.
Neat hack! If you want a similar solution for something a bit more dynamic, all the <a href="http://pagekite.net/" rel="nofollow">http://pagekite.net/</a> sub-domains are SSL-enabled by default.<p>You run whatever HTTP server you like, PageKite operates as a front-end and handles SSL. The connection between your server and the PageKite front-end is encrypted as well.<p>Like Dropbox, there are bandwidth limits on the PageKite service, but for heavy users we'd be pretty open to negotiating - our public price structure is more meant for personal sites and prototyping. OTOH, for something like a Facebook app, 1GB probably goes a very long way.