the idea of asking a user to verify a certificate is ridiculous to begin with. given the number of insanely high profile sites that don’t properly register certificates with their subdomains (*cough*google*cough*), it’s reasonable to say that the system is broken, and incapable of being fixed in its current form.
One response so far
14th Jul, 2008 at 3:02 pm