Hacker News new | past | comments | ask | show | jobs | submit login

The browser message is not misleading. A untrusted cert is indistinguishable from a MiTM attack.



and 99.99999999% of the time, a self signed cert represents... not much of anything, other than the fact that a site owner declined the to pay the PKI racket's protection money.

And even if we ignore that, the whole "EV Cert" thing is a total sham. All the EV cert does is indicate that you overpaid for it.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: