[deadbunny]

What nonsense. Extended validation schemes are snake oil peddled by CAs to make more money.

[nurettin]

It is all nonsense until money is involved and customers want to know that the advertised website actually belongs to your legal entity.

[dividuum]

Does not help in any real way. See https://arstechnica.com/information-technology/2017/12/nope-... for an example.

[mehrdadn]

There's a huge difference between "it isn't impossible to bypass" and "does not help in any real way".

[dividuum]

The only reason to get EV certs is the supposedly "safe" green organization field. As demonstrated it can be circumvented by anyone with minimal monetary motivation. Why even bother in that case? I rate that as "does not help in any real way".

[mehrdadn]

> As demonstrated it can be circumvented by anyone with minimal monetary motivation. Why even bother in that case?

Same goes for the lock on your door. Why do you bother? Just take it off.

[dividuum]

I never said that. The alternative isn't no lock of course. It's the free lock that's equally safe to the one with the green "this is safe" sticker that you pay a premium for.

[nurettin]

I pointed out that letsencrypt does not compete in the same space with some providers and I get responses from internet freedom activists who don't want to acknowledge the fact. If shit is broken and doesn't work, you don't use it to make a point, you go fix it.