On 03/13/2010 11:17 AM, Martin Samesch wrote: > Hi Rasmus, > > On Sat, Mar 13, 2010 at 10:30:12AM -0800, Rasmus Lerdorf wrote: >> >> It is not self-signed it is a cacert.org certificate and it is fine. >> Install the cacert root certificate to eliminate those warnings. >> Someone should probably add the instructions for how to do that to the wiki. > > Thanks for this hint. > > As I'm using a CAcert certificate too, I already installed their root > certificate some time ago. > > BTW, the warning isn't issued by Firefox but by the add-on 'SSL > Blacklist'. I think this warning is rather about MD5 than about CAcert.
Yes, I know, but that blacklist is wrong in this case because md5 root certs aren't vulnerable. -Rasmus