Not yet
Maybe once the browser manufacturers finally support DNSSEC and DANE and we can ditch the CA system?
Oh, and once it doesn't require a degree in computer science to get the darn certs running properly in BIND/Apache/Postfix/Dovecot etc...
Maybe once the browser manufacturers finally support DNSSEC and DANE and we can ditch the CA system?
Oh, and once it doesn't require a degree in computer science to get the darn certs running properly in BIND/Apache/Postfix/Dovecot etc...