> Hence, why I want a technology to protect data and not a human being. Wouldn't we all like that... Sorry to break it to you, but it doesn't exist.
In the interim, lobby your browser vendor to remove the ability to use an SSLed webserver whose certificate isn't valid/trusted. Then if you remove your users' ability to change CA trust, you've gone a long way in fixing the REAL problem you are trying to solve. cheers, tim _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
