Domas Mituzas midom.lists@gmail.com wrote:
Hmmm, the latter now shows a self-signed certificate again?
how is that an issue?
Most browsers (and RSS readers and ...) will bark at it as "(potentially) unsafe". Therefore, IMHO Wikimedia should either use established CA's certificates or publish informa- tion on the "private" (or CAcert) certificates on a trust- worthy server, in paper publications, etc. where it can be used to verify the certificates.
Tim
P. S.: Yes, it *is* highly unlikely that wikitech.wikimedia.org's A record gets hijacked and a MITM attack is staged as little could be gained.