Originally posted by phpman
you can't steal creditcard numbers just form a SSL site. well I suppose you could but the certificate doesn't have anything to do with it. you can still go to a https:// site without a certificate and do the samehting, but the user is pretty stupid if they didn't notice a certificate. you can check any SSL site in the browser.

go here
https://www.accountonline.com/View?d...teId=BKCD_WAMU

and in mozilla go to View->page info and go to the security tab. tha twill tell you all you need to know if the certificate is valid and where it came from.

i have never done it myself but the owner of the site I run does it so I don't see it.
if you would have done what I asked you to do you could find out all that info. I did it and found out where they bought that certificate and searched. just takes initiative