Domas Mituzas <midom.lists(a)gmail.com> wrote:
>>
https://wikitech.wikimedia.org/
> Hmmm, the latter now shows a self-signed certificate again?
how is that an issue?
Most browsers (and RSS readers and ...) will bark at it as
"(potentially) unsafe". Therefore, IMHO Wikimedia should
either use established CA's certificates or publish informa-
tion on the "private" (or CAcert) certificates on a trust-
worthy server, in paper publications, etc. where it can be
used to verify the certificates.
Tim
P. S.: Yes, it *is* highly unlikely that
wikitech.wikimedia.org's A record gets hijacked and a
MITM attack is staged as little could be gained.