Lloyd Chambers wrote:
> Bill,
>
> I saw the same thing and I checked that the fingerprint matched that
> found using my browser to https://glassfish.dev.java.net. So if it's
> compromised, everything at glassfish.dev.java.net is compromised. :)
>
> The certificate is apparently signed by a root certificate which is not
> included in browsers by default as a trusted authority, or at least in
> Safari 3, which is what I use.
The interesting thing is that this changed a few days ago.
Does anyone know if the server certificate changed recently?