> Seriously, does buying a cert really give you anything? Credibility? I always check to see where the cert is coming from when I'm sending sensitive data over the net. If I don't recognise the provider, I won't send the data. I won't complain to the webmaster or anything, I'll just write off the site and look for somewhere else.