I know you are trying to help. But it doesn't help me to defer to a package manager because I'm trying to fix what the last package managers screwed up.
On Thu, Aug 25, 2011 at 04:09:44AM -0500, Michael S. Zick wrote: > On Wed August 24 2011, t...@terralogic.net wrote: > > > > Top posting to a hijacked thread is not the way to get > a quick and useful reply. > Next time, start your own. Mailing list threads are cheap. > > > I see my bank has an invalid cert. Likely I have an old cert chain. I'm > > running Debian Linux and firefox. > > > > Use anyone of the distribution provided package managers to download and > install the most recently released package of certificates. > > > Can anyone tell me where to install a valid root cert? Like what > > directory? > > I would think the bank should be able to provide the root of the chain. > > I'll need to know SPECICALLY what to ask them for. > > > > Asking the operator of the site you wish to authenticate for the certificate > is similar to asking the Fox to guard your Chicken House. > > Get the root certificate from an "independent", trusted, source. > Using your distribution's package management will take care of that concern. > > > I've created my own certs of course but just not recently. > > Also I never tried to install the CA cert for firefox. > > > > Your distribution's package manager already has that handled. > All you have to do is use it. > > Mike > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List openssl-users@openssl.org > Automated List Manager majord...@openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org