[s_henry_paulson]

The intent is in the certificate. Superfish could create and sign any certificate, meaning it could impersonate websites. This certificate cannot sign other certificates, meaning it can't be used in the same way as superfish. Thus the logical intent seems to be bloatware, backdoors, etc.. not snooping on HTTPS connections.

This is the distinction the person you are replying to is trying to make, because although similar to superfish, it is not quite the same.

[tedunangst]

If the dell cert can't be used to impersonate websites, what's with all the test websites people set up to demonstrate it?

[nnutter]

I think the problem is the private key is accessible AND machines were already setup to trust it (because of the cert). So what s_henry_paulson said is technically correct but it's conceptually wrong.