Slightly OT, but I'd like to encourage folks here who have a google account to "star"
up issue #37178 on code.google.com to see if we cannot get Android developers to make
future versions of the OS behave sanely WRT which AAA server certificates they will accept.

I also left a long screed there about what the optimal behavior might be which some
here might like to comment on.

The URL is http://code.google.com/p/android/issues/detail?id=37178