On 06/16/2016 10:50 PM, Walter H. wrote: > On 16.06.2016 22:02, Gordon Messmer wrote: >> Without using a metaphor, please explain exactly who you think will >> not trust these certs, because I have never met these people. > then you know now, that there exist such people ... Well, one, but I'm hardly going to tailor my security infrastructure to one customer. > at least the folks where their security software (antivirus, whatever) > tells them a problem ... And what security software would report a problem with these certificates? (bearing in mind that ~ 30% of all TLS transactions involve a 90-day certificate, according to telemetry)