CAcert certs aren't "invalid"
Posted Nov 19, 2009 10:45 UTC (Thu) by dwmw2
Parent article: TLS renegotiation vulnerability
The resiprocate.org certificate isn't really invalid — it's just that it's signed by CAcert, and you probably don't have the CAcert root CA installed on your system.
It's not included in Firefox by default, unfortunately.
to post comments)