Hi I'm using secpay and want to know if I really need to have ssl active as Secpay goes to a secure page for credit card details.

If I do not use a certificate (shared or otherwise) how funerable is the site really? I really want to make the site secure but the hassle with trying to find out how this works having a copy of the secure pages duplicated, will this mean having to change the links to point to the duplicated pages on the secure server. Or is it just a question of pointing to the secure server in the config and then activating the ssl option in config?