Comment 4 for bug 1455990

While having a 4096-bit certificate is not necessary in order to be secure, its only disadvantages are taking longer to generate (which I don't think is much of an issue because it doesn't get regenerated very often) and taking slightly longer for the handshake (which is practically negligible on modern computers).

Yes, saving the md5 of the accepted certs is a bad idea. I will fix that.