[Serusers] Re: [Users] Improving TLS implementation

[Juha Heinanen]

Cesc writes:

 >  Well, that is true, but what do you propose then? just present a host cert
 > and nothing else? 

yes.  

 > I would say that if the company trust the hosting for
 > running the service, a mere certficate should not be the problem,
 > should it?

it would be if the company uses the same domain certificate also for
other things, like e-commerce.

-- juha