>I personally would prefer that the browsers only trust keys that I have signed, >have low trust for keys signed by keys I have signed, and no trust for the >rest. >I'd really like the ability to walk into western union or my bank or local >google >office and sign their key as well as the ability to revoke my signature without >revoking my key.
You have complete control over this - just remove the ones you want from the default collection of CAs in the Trusted Certificate Authority store. Well, not necessarily the intermediate authorities, but I'm sure you could figure it all out if you wanted to. t _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
