Novice users need to download & install CAcert roots. It must be done using HTTP (http://www.cacert.org/index.php?id=3). But the HTTP protocol is considered as unsafe nowadays. Moreover, some leading browsers offer the function “HTTPS-only”.

The websites Blog & Wiki are planned to be equipped with LetsEncrypt to make their visits easier. Both CAcert roots are already prepared as simple certs and bundles, for systems Windows / Unix / Linux / Android / Mac, on the wiki page https://wiki.cacert.org/FAQ/NewRoots.

Best price journeys with cash back for CAcert: https://www.booking.com/index.html?aid=346253
Donations IBAN CH02 0077 4010 3947 4420 0