what does a self-signed outdated ssl cert worth? [https] could it be tricked [https] in a way, that the end user will not recognize? [e.g. he already accepted the cert one time, and the browser would warn her, if it been ""attacked""?] ..I mean does an outdated self-signed certificate give the same security as a normal cert? thanks