jjl at pobox.com (John J. Lee) writes: > In fact, even if you *are* sending him your credit card details, it's > *still* of almost no consequence, SSL being pretty useless in practice > (see Bruce Schneier's writings on the subject, eg. in "Secrets and > Lies")... I wouldn't say SSL is useless in practice, but the CA business certainly is 99% scam.