Anyone complaining about the certificate notification feature of Firefox is obviously incompetent. This feature should have existed from a long, long time ago based on the long history of web exploits. If DOD and the other government agencies including my own want the browser to recognize their certs they should do one of the following (best value order)

1) Issue certs signed by a root government CA; I believe the Federal Bridge was established for just this purpose.

2) Work with the browser companies to install their root certs in the next release.

3) Install their root cert in all of the browsers within there organization. This last step would enable them to also ensure all of their browsers are configured securely (if they can get their act together).

Anyone in the private industry complaining about this should also do the above three steps with #3 being extremely feasible.

Stupidity in the IT Security world has to stop! Its good to know that Mozilla as always is trying to do something about it.