> You're probably not aware (owing to your arrogance) that at least some of > the CAs which ship as part of the Mozilla bundle have been known to issue > fraudulent certificates in the past, even the past few weeks. > once there was a remote root in freebsd kernel, so I have just stopped using it (sometimes I wish I did....)