> so long as the user understands what the point of the cert is Users can't understand what the point of the cert is.
>"if there is a padlock it is _safe_".
There shouldn't be a padlock if it's not safe (i.e. if the cert is expired or
self-signed).
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
