On 12/13/09 10:41 AM, Jonathan Schleifer wrote: > Dave Cridland <[email protected]> wrote: > >> Applications shouldn't be installing trust anchors without a lot of >> confirming with the user. > > I'm not talking about an application installing a system-wide root > certificate. But if the StartCom certificate is included and used for > just that app, it only makes sense to add CACert as well.
Not really. It depends on what level of trust you have in those anchors. CAs are not interchangeable. Peter -- Peter Saint-Andre https://stpeter.im/
smime.p7s
Description: S/MIME Cryptographic Signature
