Reply to post: Re: And it all goes to show...

Mozilla boots alleged snoop troupe from its root cert coop: UAE-based DarkMatter thrown onto CA blocklist

phuzz Silver badge

Re: And it all goes to show...

"sites should be allowed to protect themselves with any cert, even a self signed one"

Websites are allowed to use whatever cert they like (or none at all).

Equally though, users are also allowed to look at a site with a self signed cert and say "that looks fucking dodgy".

And a self signed cert doesn't stop MitM snooping, because there's no way for the end user to know that the cert was signed by the site itself, or by some bit of pass-through spying equipment in between.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon