|
|
|
|
|
|
by tptacek
4945 days ago
|
|
|
Yes; more importantly, a MITM can replace a validly signed certificate with a self-signed certificate. If browsers are lax about self-signed certificates, all TLS connections are weakened, not just the ones that "opt out" of "good" certificates. |
|
|