I increasingly want that little padlock to look like a 4 leaf clover. If you're very lucky it's secure.
What could possibly go wrong:
So, Cloudflare can get a cert for any domain belonging to their customers, and will soon be doubling the number of https sites on the internet by doing so.
And, Cloudflare gets this cert from Comodo, which has in the past given fraudulent certificates for google.com to the government of Iran. And which was only not blacklisted from browsers because too big to fail.
Also firstname.lastname@example.org when you asked if I had any schemes in mind I totally blew #vaugejoke opportunity.
And OMFG, searching for any context (never was hardly any) I find, this month https://tahoe-lafs.org/pipermail/tahoe-dev/2014-September/009212.html
Andrew E likes this.