or possibly infinitely easier if the users become accustomed to accept ssl errors due lacking root certs.