After a few weeks with a self signed SSL certificate I had a closer look at the site statistics and as thought before still lots of people don’t visit a site behind a self signed certificate. Because I don’t want to spend money for a certificate I made the whole site accessible via http instead of redirecting everybody to the secure SSL site. Now the user has the choice to use http or https.
Of course I created a redirect to SSL for all login/admin stuff.