Start using Firefox 3 and you get new insights.
openssl s_client -connect www-949.ibm.com:443
Tells me the same :-)
FF2 tells you the same thing. Using self signed certs in and of itself is not necessarily a bad thing. Is this a customer facing site?
i thought that Mozilla and Opera and Microsoft agreed on the color scheme for certificate error so users would have the same noticiation.
does it turn red if you continue after the warning ?
There is no need to use Firefox 3 to get this not always helpful message. The major problem is that hardly anybody sees and uses the offered hotspot "exception" ! That is the same situation with IE or Opera.....
And that is why companies like Verisign and Thawte have a rather simple and very successful business modell: They just sell the evidence of conformity with certificates stored in browser software.
@Claus: You're correct. In fact, the dialog is technically incorrect - a certificate is not "invalid" simply because it is self-signed. This message is needlessly alarmist.
its properly considered invalid, because the connection may have been infiltrated by a man-in-the-middle attack.
Only if you would be able to verify the authenticity, it would even provide the higher level of integrity over an official certificate.
I agree with David - that the connection may have been infiltrated does not mean that the certificate is invalid. It's good that FF show's its suspicion, but to say the certificate is invalid is just not correct.
From a client perspective, the trustworthiness of certificates rely solely on some bunch of chaining mumbo-jumbo. As roots of some authorities are stored on your system already, only these are considered valid, and so their descendants.
Unlike self-signed certs. They are considered invalid, because no reference is found, unless added to the trust-store manually. This dialog-phrase sure makes sense to users.
Much more important to me: I Heart the new look!
Heiko Voigt on Rich Karlgaard, Publisher Forbes Magazine interviews John Chen, CEO of BlackBerry at 17:07
Volker Weber on Deutsche Standortvorteile at 16:38
Klaus Schröder on Deutsche Standortvorteile at 16:34
Bodo Menke on Apple Music on Sonos coming this fall at 23:15
Ian Bradbury on Apple Music on Sonos coming this fall at 18:22
Ian Bradbury on What happens when you slide the Note 5 pen in the wrong way at 18:21
Max Nierbauer on The Windows Phone ‘Twilight Zone’ at 14:29
Sven Bühler on What happens when you slide the Note 5 pen in the wrong way at 20:49
Markus Dierker on Apple Music on Sonos coming this fall at 18:07
Theo Heselmans on Apple Music on Sonos coming this fall at 11:15
Johannes Matzke on Apple Music on Sonos coming this fall at 11:01
Volker Weber on What happens when you slide the Note 5 pen in the wrong way at 10:19
Jürgen Sting on Windows 10 für Lumia Smartphones :: 8 GByte interner Speicher erforderlich at 09:31
Wolfgang Siebeck on What happens when you slide the Note 5 pen in the wrong way at 06:12
Heiko Müller on Sonos and the Russian iPod at 22:43
Nick Coenen on Touching at 16:37
Markus Dierker on Sonos and the Russian iPod at 15:33
Hubert Stettner on Did Microsoft fire all of Nokia's designers? at 14:26
Tobias Vogel on Sonos and the Russian iPod at 14:07
Harald Gärttner on 90 days with Apple Watch at 13:48
Bernhard Werner on Did Microsoft fire all of Nokia's designers? at 22:11
Volker Weber on Did Microsoft fire all of Nokia's designers? at 17:08
Christian Just on Did Microsoft fire all of Nokia's designers? at 16:51
David Guillaume on Did Microsoft fire all of Nokia's designers? at 12:22
Chris Frei on Touching at 11:46