Comment Re:How bad is this, really? (Score 1) 105
Wait, more precisely: We'd need administrators that get at least basic security training. When you see people shrug at you when you tell them that using self signed certs is not ok and you get back a "what's your problem, it IS encrypted, what else do you want?", you know that the person does not even understand what he is doing here.
Yes, because we *ALL* know how trustworthy the CA's are. With a self-signed cert, you have direct and immediate control over it. Going through a CA, you're trusting (there's that concept again) that they know what they're doing, that they're not issuing... alternative... certs that you didn't authorize, and that should your cert be compromised, they'll inform you in a timely (if at all) manner.