Archives by date

You are browsing the site archives by date.

A note about SSL/TLS trusted certificate stores, and platforms (OpenSSL and GnuTLS)

Pop quiz: where is OpenSSL’s default store of trusted CA certificate files? /etc/ssl/certs /etc/pki/tls/certs/ca-bundle.crt /etc/ssl/certs/ca-bundle.crt /etc/pki/tls/certs/ca-bundle.trust.crt /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem /System/Library/OpenSSL Some other goddamn place If your answer was 8. It’s a trick question, well done, take this gold star for knowledge and/or test-taking skills. Depending on the platform you’re on, any of the above could exist, and […]