ntp.org (and subdomains) do not use a SSL cert in common use
The certs on *.ntp.org are from CA-Cert. Ditto lists.ntp.isc.org .
The root cert does not appear in major browsers; Debian removed it https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=718434 , etc
See also: http://savannah.gnu.org/tls/
We are linking, in our docs/, from our website, to https://list.ntp.org . (This happens because we serve pages using https, and that becomes the default method in asciidoc links). The user gets a scary warning. I assume we want him to read the page, so are we encouraging him to click "Confirm Security Exception"?
I would like to amend links in the docs to explicitly link to the http pages for whichever site does not have a chain of trust in both Firefox 43 and IE 10.
Feedback, please.