Re: Web-o-trust, smmeb'ol'thrust
"Here's the thing about a self-signed certificate: how do I know that you issued it?"
See: DNSSEC+DANE
Bypasses all this CA rubbish - which is why the browser authors don't want to bake it into their browsers.
How about a "PPS:" in the actual article about that, to raise awareness?