On Mon, 31 Mar 2014 16:03:30 -0700, Russ Allbery <r...@debian.org> wrote: >Of course, I'm one of those people who believes that web site certificate >signatures as currently implemented, with the level of vetting that's >actually done by commercial CAs in practice, are more of an extortion >racket than a security measure.
I have to agree on that. But a Startcom Certificate on a personal web site is one web site more that doesn't train users to blindly click away certificate warnings. A cacert certificate or a self-signed certificate on a personal web site is one web site more that does that kind of training. Grüße Marc -- -------------------------------------- !! No courtesy copies, please !! ----- Marc Haber | " Questions are the | Mailadresse im Header Mannheim, Germany | Beginning of Wisdom " | http://www.zugschlus.de/ Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 621 72739834 -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1wuszb-0007bm...@swivel.zugschlus.de