Comments on: SSL Infoquickie (with Bonus Firefox Pro-Tip!)

By: jmdesp

jmdesp — Tue, 21 Oct 2008 21:48:35 +0000

It’s nice to get such a statistic, but I think that most of the problematic sites will not be top 500.

Using a self-signed cert is something that a lot of small sites would do, but almost no large size sites. But as they are a lot of small sized sites doing it, they probably end up representing a larger number of viewed pages than a few of the top 500 site (that’s the “long tail” magic).

By: Stevo

Stevo — Tue, 21 Oct 2008 15:10:28 +0000

Any idea of EV adoption?

By: Jacopo

Jacopo — Tue, 21 Oct 2008 14:28:51 +0000

Another Firefox tip: there’s an extension called Perspectives
that “verifies” self-signed certs. The university servers access the site from various hosts in the world and verifying that the certificate is consistent over a period of time. While not the “Perfect Solution”, it does protect you from some man-in-the-middle attacks.