On Wed, 01 May 2013 10:52:32 +0200 Frank Lanitz frank@frank.uvena.de wrote:
Is it a correct time for a little SSL-Mozilla-Bashing? They do not include CAcert with their Web-of-Trust-based method of authentification, but include root-certificates which are known to be very week PKI and there are rumors that some of them are ruled be the agencies. </paranoid>
They do not include the two official bulgarian CA-s as well, even though the laws here are very strict, and these CA's cards are accepted as electronic signatures.