On Sun, 11 Sep 2011 13:00:09 MDT, Keith Medcalf said: > The current system provides no more authentication or confidentiality > than if everyone simply used self-signed certificates.
Not strictly true. The current system at least gives you "you have reached the hostname your browser tried to reach". A self-signed cert doesn't even give you that.
pgpYXYAiRvyEY.pgp
Description: PGP signature