Comment 3 for bug 553495

I agree that adding random certs to upstream NSS would be unwise. I do however think that it should be added as a local patch to the Ubuntu release of NSS or news.launchpad.net should be resigned with a trusted root.