Re: Why is self-signed such a bad idea ?
"While your utopian idea is all well and good, the problem is that the largest PKI trust chain out there - which includes the most common Web browsers - doesn't recognise the DoD as a trusted root CA. So, you know, might want to fix that first - provided they can satisfy the other members that they're trustworthy."
Of course, no one in the DoD would ever find a reason to impersonate someone else's server....
....
....
...
um, moving on...