Folks might find this article, *and the things it links to* as useful starting points. https://blog.mozilla.org/security/2016/10/24/distrusting-new-wosign-and-startcom-certificates/
I am not sure if general discussion of CA trust issues is appropriate for openssl-users. -- Senior Architect, Akamai Technologies Member, OpenSSL Dev Team IM: richs...@jabber.at Twitter: RichSalz
-- openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users