Ben Laurie is right though; the fact that shoddy CAs will cut you a cert for MOZILLA.COM (or presumably anyone else) without verifying who you are does kind of steal some of the thunder from today's announcement.
What's really fucked up here is that Verisign will never hear the end of it about mistakenly issuing a Microsoft certificate in 2001 --- it was just mentioned again in the New York Times --- but in 2008 Comodo can just mint certificates for random companies without checking, and all it merits is a blog post.
What's really fucked up here is that Verisign will never hear the end of it about mistakenly issuing a Microsoft certificate in 2001 --- it was just mentioned again in the New York Times --- but in 2008 Comodo can just mint certificates for random companies without checking, and all it merits is a blog post.