tumic
5
The reason are the misconfigured servers (also true for support.avast.com
) that do not send
the intermediate SSL certificates as required. So all you can do is to conntact the server administrator
and let him know to fix the server configuration (I have done this for support.avast.com, should be fixed
soon).
If you ask why the browser does not handle the broken server as untrusted, it’s because the browsers
usually do cache all intermediate SSL certificates they “see”, so if they than connect to a such broken
server, they try to search the cached SSL certificates to complete the certificate chain.