another original sin of mozilla was never including CACert.
letsencrypt was no problem to add because it's ๐ฏ run by spooks.
everyone using LE for SSL and half of the net behind cloudflare. _what could possibly go wrong?_
@iron_bug @scathach at least they aren't going to be "lawfully intercepted" like jabber.ru ..
i don't have a good solution either, but LE and cloudflare are clearly the problem not the solution.
I2P is pretty nice. i like that it's a complete darknet, not something to access the clearnet. maybe someday GNUnet will be usable ;)