|
|
|
|
|
|
by vtlynch
3233 days ago
|
|
|
>But aren't regular non-devs supposed to verify certificate name and the name of the website they are on? But aren't regular non-devs supposed to verify certificate name and the name of the website they are on? The browser does this for you. Chrome (and all major browsers) have a certificate validation that parses the hostname in the certificate and compares it to the site you are on. Checking certificate details manually is primarily useful for troubleshooting. It serves little to no security benefit for 99% of users. |
|
|