When I look at my "certificates" in Firefox, for Gmail, for example, it says SHA1 fingerprint and MD5 fingerprint, e.g., for Thawte SGC CA (i.e., mail.google.com).
Does this mean this is a site that can easily be compromised?
If so, what do we do in Firefox 3.0.5 on Windows to protect from a spoofed site?