[squid-users] SSL bump not working w/some sites.

Linda W squid-user at tlinx.org
Tue Nov 8 19:15:42 UTC 2016


Amos Jeffries wrote:
> It should be safe enough to check that your system CA set is up to date.
> There were changes as recently as a week ago.
>   
---
    My "system CA" -- when I searched for linux CA updating, it
said on linux there were many possible CA locations, but going
with the top choice for opensuse 13.2, I found
that "/var/lib/ca-certificates/pem/" is owned by RPM
   ca-certificates-1_201403302107-8.1.2.src.rpm
(which doesn't sound very up-to-date).

Following it's internal source URL, and it pointed me to
   https://github.com/openSUSE/ca-certificates
which was last updated Nov 10, 2015.

Still doesn't sound very current.


:-(...

Seems like someone doesn't want to make this easy.  I'll go ask
on my distro list, but for "recent" updates, I might have to
wait a while...  Like said -- distro-list... ;-)

thanks,
-l



More information about the squid-users mailing list