[plnewman]

Yep, but just remove the 's' from the protocol.

[46Bit]

As you'd know if you'd tried it, it then redirects back to the https version - or at least FF & Chrome do, too late to actually check the headers.

[rll]

Or install the cacert root certificate:

http://www.cacert.org/index.php?id=3

[sid0]

Do you trust CACert enough?

[rll]

Moreso than some of the CAs that are trusted by default, yes.