Thanks @luisgf but * It seems it's only for web servers (what about OpenLDAP, mail servers...) * I can trust if it says that the server is compromised, but not if it says that no, or that something went wrong (even if the server is ok, the certificate can be compromised and then, all the info anyway isn't it? or the certificate is only for authenticate the server, and it's not used for encryption?)