Call it a network audit then, obviously automated processes don't care if they scan 1 host or 50... However most smaller websites, the kind that don't get patched and subsequantly get infected with worms and chew all the bandwidth on the internet, are usually on the same server as the website, which is more specifically what my point was aimed at, *usually* larger firms have their own audits because it's becoming too embarressing for companies not to these days...
Actually the burden of responsibility here of any companies, not CAs, should be auditted before getting any sort of financial information, perhaps some sort of "auditted by visa", mastercard, et al, so anyone without some sort of symbol shouldn't be accepting financial info of any kind, but this is a much bigger social issue beyond the scope of this list, or MF in general for that matter... In any case unless something more is done on this front the problem of escaping credit card/banking information is not only a matter of time, but going to increasingly get worst...
-- Best regards, Duane
http://www.cacert.org - Free Security Certificates http://www.nodedb.com - Think globally, network locally http://www.sydneywireless.com - Telecommunications Freedom http://happysnapper.com.au - Sell your photos over the net! _______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
