On Feb 21, 2013, at 2:04 AM, skylab <[email protected]> wrote: > Hi, thank you for your replies. > How can I verify my ca-certificate list? And how can I update it? > Thank you very much. > > Skylab
It depends on your O/S. Linux and *BSDs keep the certs updated through packages. If you have Redhat/CentOS, check the ca-certificates RPM. You might have to set sslproxy_cafile to /etc/ssl/certs/ca-bundle.crt If you have Debian/Ubuntu/etc, check the ca-certificates DEB. You might have to set sslproxy_capath to /etc/ssl/certs For FreeBSD, check the package ca_root_nss. Set sslproxy_cafile to /usr/local/share/certs/ca-root-nss.crt HTH, Guy
