"It didn't prevent him to click all his way through the warnings and error messages in order to access those sites, thinking it's Firefox's fault - would he have inspected the digital certificates used by those sites, he might have understood that he was mislead and attacked. Or maybe not - because one needs a basic understanding about how digital certificates behave and how they are chained to a valid anchor (certification authority certificate root)."