Alaric Dailey wrote:
So what you are telling me is that any class 3 server cert from CAcert
is just as good, if not better than, an EV certificate because the
person (ignoring weaknesses in the system, like paying off Assurers)
went thru the trouble of getting validated in Person, by a minimum of 2
people?
Are you telling me the CAcert system can be subverted merely by the
application of money? I'll start ignoring those of Duane's criticisms of
EV which are on that basis, then...
Gerv
_______________________________________________
dev-security mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security
