When are self-signed certificates acceptable?
Many websites are running with self-signed certificates. WHY ?
Fri Jul 25 14:53:10 2014 - permalink -
Running things this way just performs one thing : encrypt data between "someone" and my browser. "someone" could be the origin server, OR any Man-in-the-Middle, I have NO MEANS to be sure who I'm talking to since the certificate is self-signed. Having a CA-signed certificate, on the other hand, would allow me to make sure I'm dealing with the origin server.