Totally agree with you. I was in contact with them for 2 months, asking about their SSL. I'm very reluctant to enter my credit card details onto an out-of-date SSL site. Lynne told me on many occasions that their "developers" are working on the issue.
I'm fine with the out-of-date SSL as long as my card is secure. If someone sole my card because of it, guess who will be hearing from my lawyers
. I'm pretty sure this is also NON-PCI compliant, and against Visa/Mastercard operating requirements. Hopefully someone who works in the payment industry (CDGcommerce or Cory possibly?) can comment on this.