Re: Odd?
The big issue is that the intermediate CA had no right to emit those certificates. The biggest hole in the whole PKI cert affair is that as long as selling certificates is just a business, someone will try to make more money selling certificates to anyone without proper diligence. It happened with domains, where spammers and crooks can buy them by the sackful, and will happen with certificates as more and more sites move to https.
Certificates should be like passports - guess no one in his mind would ever allow business to emit passports. But with certificates is OK, it's a business, just look to increase sales...
Biting the hand that feeds IT
