don't panic. this is not the end of the world. SSL is used to provide an
encrypted tunnel between your browser and web server. you still need to have
the RSA private key to generate the digital signature. Also you won;t stay on
the same web site for hours. So even people can find out md5 collision in
several hours, your connection alreay is finished.
To be clear, MD5 is NOT an encrytion algorithm, it is only a one-way hash
function to generate a digital signature. It is a big risk for
non-repudi