said by Tordurbar :

Why take a drunk drivers license or pull a bad guys cert, just seems like it's the right thing to do.

said by Tordurbar
@ asherc4
Massive misquote there.
You quoted Melih's quote of Donna's post of what Verisign said.
[/BQUOTE :

Yep you got me there. Quite a good one
But hang-on in what context was the misquote made?Hmm
Should i explain that again...perhaps you missed it.
Here it is again.
"If Melih had just come out and publicly stated the below quote from the beginning (in regards to the cert issues) then gone on to re-establish it's responsibilty in-regards to future direction of cert developement. Then we would have had an informitive insight to the issues at had.
Unfortunatley he continues to treat the issues as a platform for further attacks on those that wish to call for such."

I actually feel you are doing Comodo a dis-service somehow in making further light of these issues. Although in the scheme of things you would probably fit right in in the Comodo PR department
I'm not sure it qualifies you to make any assumptions on my behalf though
Quote "whom the fools really are! - Yes, and it becomes clearer with each misguided blog posting."

Quote ....."Why instead do they single out Comodo from all the CA's and try to hold their feet to the fire, for certs that imply no more than encryption/valid domain, the bad guys are the bad guys in this."

O.k. i understand your reasoning for this for this statement.
It seems obvious that Comodo would prefer that everybody finds the notion of what a lesser cert currently represents in their eyes. And to further future-proof their stance they are encouraging a more "trusted" interpretation of a more complex expensive cert.

Quote ....."Bad actors can get DV certs, and drivers licenses and credit cards and cell phones and ISP's and Domain Hosts and whatever else they want, pretty much. Hello real world.

O.k. so who issues Drivers Licenses then. The "wild cowboys" of the cert trade. No it's a serious issue and one would expect responsible parties to do such. Certs are no different. The people that issue them should lift there game or face loosing control of there issue. Although the internet is global the country in which the businesses are registered are not and legislateing company's to require a "we trust you to receive our own commerce cert whilst further requiring "Browsers" to apply for their decryption of a particular endorsment could be more lucrative, more trusted and finally more accurately designed both in it's implimentation and function.
This is more of a "Hello real world" view.

"......i sincerly hope they no longer continue to have influence in this respect."
I was not suggesting that Comodo should go out of business. just i see no evidence that they have the intergrity to continue on behaving the way they do presently. The current product fails to meet the potentsial of it's design and is not much more than a glorified cookie or token.

"The better solution is to educate users on the new reality."
Couldn't agree with you more.
--
It's one thing to be sure of yourself. It's another to confuse people. If they weren't related to each other we wouldn't have a problem;~)

said by Mele20 :

I don't think little guys should be in this game in the first place.

I think you are the one engaging in abuse of this system by wanting to provide encryption to a little site for your friends to visit. That is NOT what this is supposed to be about.

If certs have nothing to do with TRUST then there is no reason whatsoever to have the system in place. It should be torn down and I have to assume that is what you are advocating because anything else makes no sense by virtue of your own statements.

said by jp10558 :

In the real world, your arguement is like saying Colleges, Local Libraries and clubs among others shouldn't be able to have membership/ID cards, because some people don't realise that they're not as good an identifier as a Passport. I'd have said drivers license, but many states drivers license isn't any better or harder to forge than a College ID.

said by Mele20 :

I don't get your point. As a user, I want to know if the website I am going to give my personal information to is actually the website I think it is. That is the first thing I need to know and second is that my information is encrypted.