It doesn't bother me as much as it should. I get those all the time when I am viewing pages from work. Now the pages I am viewing usually have a .mil in the address, and I constantly think, why isn't this fixed yet?<br>
<br><div class="gmail_quote">On Sat, Aug 18, 2012 at 11:56 PM, David Tomaschik <span dir="ltr"><<a href="mailto:david@systemoverlord.com" target="_blank">david@systemoverlord.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div class="HOEnZb"><div class="h5">On Sat, Aug 18, 2012 at 7:11 PM, Jeremy T. Bouse<br>
<<a href="mailto:jeremy.bouse@undergrid.net">jeremy.bouse@undergrid.net</a>> wrote:<br>
> So I have a business checking account with Suntrust... I was elated and<br>
> pleasantly surprised when I go to log into my account and every single<br>
> secure certificate presents me with a failure in Firefox and have to put<br>
> in exceptions. Looking into it shows that SunTrust enjoys using GeoTrust<br>
> SSL certificates but their IT department is unable to successfully<br>
> install them along with the proper GeoTrust SSL Intermediate CA certificate.<br>
><br>
> I'm not sure which incompetence scares me more... That a large bank's<br>
> IT department is unable to do such a simple step as install an<br>
> intermediate CA certificate when they install their server certificates<br>
> or the fact that browsers like Google Chrome and IE happily except this<br>
> certificate and state it's all valid without actually validating the<br>
> certificate chain.<br>
><br>
<br>
</div></div>openssl s_client -CApath /etc/ssl/certs/ -connect <a href="http://suntrust.com:443" target="_blank">suntrust.com:443</a><br>
verifies the chain just fine.<br>
<br>
IIRC, Firefox uses its own CA root store, and Chrome (on Linux) uses<br>
the system CA store.<br>
<span class="HOEnZb"><font color="#888888"><br>
David<br>
<br>
<br>
<br>
--<br>
David Tomaschik<br>
OpenPGP: 0x5DEA789B<br>
<a href="http://systemoverlord.com" target="_blank">http://systemoverlord.com</a><br>
<a href="mailto:david@systemoverlord.com">david@systemoverlord.com</a><br>
</font></span><div class="HOEnZb"><div class="h5">_______________________________________________<br>
Ale mailing list<br>
<a href="mailto:Ale@ale.org">Ale@ale.org</a><br>
<a href="http://mail.ale.org/mailman/listinfo/ale" target="_blank">http://mail.ale.org/mailman/listinfo/ale</a><br>
See JOBS, ANNOUNCE and SCHOOLS lists at<br>
<a href="http://mail.ale.org/mailman/listinfo" target="_blank">http://mail.ale.org/mailman/listinfo</a><br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>SimonTek<br>912-398-6704<br><br>