Browsers that treat locally-added CA certs equivalent to builtin ones are complicit in malicious AV and firewall products' attacks on users.
If a site's cert is signed by a locally-added CA, the browser should display a prominent warning and the name of the CA.
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.