Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Yes, but assuming partial good faith (this does sound like an oxymoron, but humor me) - how would I go about checking for cert misuses?


The OS should have a trusted CA list somewhere (not sure where OSX does); checking that it matches a fresh install should be the first step. Note that there might be multiple lists - Firefox, for one, tends to keep their CA list separate.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: